From 8c3b9797101b313c31f8af5d585eb43c88d54dd0 Mon Sep 17 00:00:00 2001
From: MichealShin <luochen_fei@126.com>
Date: Mon, 24 Apr 2017 09:50:39 +0800
Subject: [PATCH] The UI user Must be HTTP

The UI user Must be HTTP. Otherwise, the UI page can not be authorized
---
 docs/SECURITY.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/docs/SECURITY.md b/docs/SECURITY.md
index a9d0d7feaa6..66566cedb25 100644
--- a/docs/SECURITY.md
+++ b/docs/SECURITY.md
@@ -74,6 +74,7 @@ ui.filter.params:
    "kerberos.name.rules": "RULE:[2:$1@$0]([jt]t@.*EXAMPLE.COM)s/.*/$MAPRED_USER/ RULE:[2:$1@$0]([nd]n@.*EXAMPLE.COM)s/.*/$HDFS_USER/DEFAULT"
 ```
 make sure to create a principal 'HTTP/{hostname}' (here hostname should be the one where UI daemon runs
+Be aware that the UI user *MUST* be HTTP.
 
 Once configured users needs to do kinit before accessing UI.
 Ex: