You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@ranger.apache.org by Lune Silver <lu...@gmail.com> on 2016/05/20 12:33:58 UTC

Ranger REST API & SSL

Hello !

I send you this mail because I have a question.

I have ranger installed on my HDP 2.3.2 cluster and HDFS/HBase/Kafka plugin
enabled.
I'm currently investigating a problem linked with Kafka plugin.

So I tried to use the REST API of Ranger from a Kafka broker, but I have a
problem to use it I think.

Here is my query ;
curl -vvv -k -u amb_ambari_admin -X GET https://<RANGER ADMIN HOST>:<RANGER
ADMIN HTTPS PORT>/service/public/api/repository/<REPOSITORY NAME>

And here is the answer :
###
Enter host password for user 'amb_ambari_admin':
* About to connect() to <RANGER ADMIN HOST> port <RANGER ADMIN HTTPS PORT>
(#0)
*   Trying <RANGER ADMIN HOST IP>... connected
* Connected to <RANGER ADMIN HOST> (<RANGER ADMIN HOST IP>) port <RANGER
ADMIN HTTPS PORT> (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* warning: ignoring value of ssl.verifyhost
* skipping SSL peer certificate verification
* NSS: client certificate not found (nickname not specified)
* SSL connection using TLS_DHE_RSA_WITH_AES_128_CBC_SHA
* Server certificate:
*       subject: CN=<RANGER ADMIN HOST>,OU=<MY COMPANY>,O=<MY
COMPANY>,L=<MY CITY>,ST=<MY COUNTRY>,C=<ID COUNTRY>
*       start date: May 11 16:27:15 2016 GMT
*       expire date: Mar 20 16:27:15 2026 GMT
*       common name: <RANGER ADMIN HOST>
*       issuer: CN=<RANGER ADMIN HOST>,OU=<MY COMPANY>,O=<MY COMPANY>,L=<MY
CITY>,ST=<MY COUNTRY>,C=<ID COUNTRY>
* Server auth using Basic with user 'amb_ambari_admin'
> GET /service/public/api/repository/<REPOSITORY NAME> HTTP/1.1
> Authorization: Basic YW1iX2FtYmFyaV9hZG1pbjoxbnE1cFhWcHI3cEc4X2JkTExTQQ==
> User-Agent: curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/
3.16.2.3 Basic ECC zlib/1.2.3 libidn/1.18 libssh2/1.4.2
> Host: <RANGER ADMIN HOST>:<RANGER ADMIN HTTPS PORT>
> Accept: */*
>
< HTTP/1.1 302 Found
< Server: Apache-Coyote/1.1
< Set-Cookie: JSESSIONID=E736839FCD30CE9A1C35344972B084B0; Path=/; Secure;
HttpOnly
< Location: https://<RANGER ADMIN HOST>:<RANGER ADMIN HTTPS PORT>/login.jsp
< Content-Length: 0
< Date: <ID COUNTRY>i, 20 May 2016 12:30:22 GMT
<
* Connection #0 to host <RANGER ADMIN HOST> left intact
* Closing connection #0
###

I'm afraid I'm not well using the API.
Any advice please ?

BR.

Lune.