Class PseudoDelegationTokenAuthenticationHandler
java.lang.Object
org.apache.hadoop.security.token.delegation.web.DelegationTokenAuthenticationHandler
org.apache.hadoop.security.token.delegation.web.PseudoDelegationTokenAuthenticationHandler
- All Implemented Interfaces:
org.apache.hadoop.security.authentication.server.AuthenticationHandler
@Private
@Evolving
public class PseudoDelegationTokenAuthenticationHandler
extends DelegationTokenAuthenticationHandler
An
AuthenticationHandler that implements Kerberos SPNEGO mechanism
for HTTP and supports Delegation Token functionality.
In addition to the KerberosAuthenticationHandler configuration
properties, this handler supports:
- simple.delegation-token.token-kind: the token kind for generated tokens (no default, required property).
- simple.delegation-token.update-interval.sec: secret manager master key update interval in seconds (default 1 day).
- simple.delegation-token.max-lifetime.sec: maximum life of a delegation token in seconds (default 7 days).
- simple.delegation-token.renewal-interval.sec: renewal interval for delegation tokens in seconds (default 1 day).
- simple.delegation-token.removal-scan-interval.sec: delegation tokens removal scan interval in seconds (default 1 hour).
-
Field Summary
Fields inherited from class org.apache.hadoop.security.token.delegation.web.DelegationTokenAuthenticationHandler
DELEGATION_TOKEN_UGI_ATTRIBUTE, JSON_MAPPER_PREFIX, PREFIX, TOKEN_KIND, TYPE_POSTFIXFields inherited from interface org.apache.hadoop.security.authentication.server.AuthenticationHandler
WWW_AUTHENTICATE -
Constructor Summary
Constructors -
Method Summary
Methods inherited from class org.apache.hadoop.security.token.delegation.web.DelegationTokenAuthenticationHandler
authenticate, destroy, getType, init, initJsonFactory, initTokenManager, isManagementOperation, managementOperation, setExternalDelegationTokenSecretManager
-
Constructor Details
-
PseudoDelegationTokenAuthenticationHandler
public PseudoDelegationTokenAuthenticationHandler()
-