Uploaded image for project: 'Hadoop HDFS'
  1. Hadoop HDFS
  2. HDFS-6548

AuthenticationToken will be ignored if the cookie value contains '@'

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Invalid
    • None
    • None
    • None
    • None

    Description

      if the cookie value is something like "email=xyz@abc.com", HDFS will ignore the AuthenticationToken and reject the request.

      2014-06-05 19:12:40,654 WARN org.apache.hadoop.security.authentication.server.AuthenticationFilter: AuthenticationToken ignored: org.apache.hadoop.security.authentication.util.SignerException: Invalid signed text: u

      This is caused by fix for HADOOP-10379 Protect authentication cookies with the HttpOnly and Secure flags
      it constructs cookie header manually instead of using Cookie class so the value is not double quoted.

      Attachments

        Issue Links

          is broken by

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-10379 Protect authentication cookies with the HttpOnly and Secure flags

          • Major - Major loss of function.
          • Closed

          Activity

            People

              jyu@cloudera.com Juan Yu
              jyu@cloudera.com Juan Yu
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: