You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ambari.apache.org by "Hadoop QA (JIRA)" <ji...@apache.org> on 2015/04/29 06:22:07 UTC
[jira] [Commented] (AMBARI-10576) Add the ability to obtain details
about required Kerberos identities
[ https://issues.apache.org/jira/browse/AMBARI-10576?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14518700#comment-14518700 ]
Hadoop QA commented on AMBARI-10576:
------------------------------------
{color:red}-1 overall{color}. Here are the results of testing the latest attachment
http://issues.apache.org/jira/secure/attachment/12728959/AMBARI-10576_01.patch
against trunk revision .
{color:green}+1 @author{color}. The patch does not contain any @author tags.
{color:green}+1 tests included{color}. The patch appears to include 10 new or modified test files.
{color:green}+1 javac{color}. The applied patch does not increase the total number of javac compiler warnings.
{color:green}+1 release audit{color}. The applied patch does not increase the total number of release audit warnings.
{color:red}-1 core tests{color}. The test build failed in ambari-server
Test results: https://builds.apache.org/job/Ambari-trunk-test-patch/2554//testReport/
Console output: https://builds.apache.org/job/Ambari-trunk-test-patch/2554//console
This message is automatically generated.
> Add the ability to obtain details about required Kerberos identities
> --------------------------------------------------------------------
>
> Key: AMBARI-10576
> URL: https://issues.apache.org/jira/browse/AMBARI-10576
> Project: Ambari
> Issue Type: Bug
> Components: ambari-server
> Affects Versions: 2.1.0
> Reporter: Robert Levas
> Assignee: Robert Levas
> Priority: Critical
> Labels: kerberos
> Fix For: 2.1.0
>
> Attachments: AMBARI-10576_01.patch
>
>
> Add the ability to obtain details about required Kerberos identities for the cluster. These details should be obtained using a REST API call formatted as a JSON structure.
> Resulting JSON block per Kerberos identity:
> {code}
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/spnego",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "root",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/spnego.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "HTTP/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> {code}
> The data will be converted into CSV-formatted data similar to the file exported from Ambari 1.7 (as follows):
> ||host||description||principal||keytab file name||keytab file base path||keytab file owner||keytab file group||keytab file mode||
> |host1|Ambari Smoke Test User|ambari-qa@EXAMPLE.COM|smokeuser.headless.keytab|/etc/security/keytabs|ambari-qa|hadoop|440|
> |host1|HDFS User|hdfs@EXAMPLE.COM|hdfs.headless.keytab|/etc/security/keytabs|hdfs|hadoop|440|
> |host1|HDFS SPNEGO User|HTTP/host1@EXAMPLE.COM|spnego.service.keytab|/etc/security/keytabs|root|hadoop|440|
> |host1|HDFS SPNEGO User|HTTP/host1@EXAMPLE.COM|spnego.service.keytab|/etc/security/keytabs|root|hadoop|440|
> |host1|DataNode|dn/host1@EXAMPLE.COM|dn.service.keytab|/etc/security/keytabs|hdfs|hadoop|400|
> |host1|NameNode|nn/host1@EXAMPLE.COM|nn.service.keytab|/etc/security/keytabs|hdfs|hadoop|400|
> |host1|ZooKeeper Server|zookeeper/host1@EXAMPLE.COM|zk.service.keytab|/etc/security/keytabs|zookeeper|hadoop|400|
> *Solution*
> The following API calls are to be used to obtain the data:
> {code:title=GET /api/v1/clusters/c1/hosts?fields=kerberos_identities/*}
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts?fields=kerberos_identities/*",
> "items" : [
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1",
> "Hosts" : {
> "cluster_name" : "c1",
> "host_name" : "host1"
> },
> "kerberos_identities" : [
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1/kerberos_identities/HTTP%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/spnego",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "root",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/spnego.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "HTTP/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1/kerberos_identities/ambari-qa%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/smokeuser",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "ambari-qa",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/smokeuser.headless.keytab",
> "principal_local_username" : "ambari-qa",
> "principal_name" : "ambari-qa@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1/kerberos_identities/dn%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "datanode_dn",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/dn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "dn/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1/kerberos_identities/hdfs%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/hdfs",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/hdfs.headless.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "hdfs@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1/kerberos_identities/nm%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "nodemanager_nm",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "nm/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1/kerberos_identities/nn%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "namenode_nn",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "nn/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host1/kerberos_identities/zookeeper%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "zookeeper_zk",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "zookeeper",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/zk.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "zookeeper/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> }
> ]
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2",
> "Hosts" : {
> "cluster_name" : "c1",
> "host_name" : "host2"
> },
> "kerberos_identities" : [
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/HTTP%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/spnego",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "root",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/spnego.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "HTTP/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/ambari-qa%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/smokeuser",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "ambari-qa",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/smokeuser.headless.keytab",
> "principal_local_username" : "ambari-qa",
> "principal_name" : "ambari-qa@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/dn%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "datanode_dn",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/dn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "dn/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/hdfs%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/hdfs",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/hdfs.headless.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "hdfs@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/jhs%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "history_server_jhs",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "mapred",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/jhs.service.keytab",
> "principal_local_username" : "mapred",
> "principal_name" : "jhs/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/nm%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "nodemanager_nm",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "nm/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/nn%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "secondary_namenode_nn",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "nn/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/rm%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "resource_manager_rm",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/rm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "rm/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/yarn%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "app_timeline_server_yarn",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/yarn.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "yarn/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host2/kerberos_identities/zookeeper%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "zookeeper_zk",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "zookeeper",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/zk.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "zookeeper/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> }
> ]
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3",
> "Hosts" : {
> "cluster_name" : "c1",
> "host_name" : "host3"
> },
> "kerberos_identities" : [
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3/kerberos_identities/HTTP%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/spnego",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "root",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/spnego.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "HTTP/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3/kerberos_identities/ambari-qa%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/smokeuser",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "ambari-qa",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/smokeuser.headless.keytab",
> "principal_local_username" : "ambari-qa",
> "principal_name" : "ambari-qa@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3/kerberos_identities/amshbase%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "ams_hbase_master_hbase",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "ams",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/ams-hbase.master.keytab",
> "principal_local_username" : "ams",
> "principal_name" : "amshbase/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3/kerberos_identities/dn%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "datanode_dn",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/dn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "dn/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3/kerberos_identities/hdfs%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/hdfs",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/hdfs.headless.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "hdfs@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3/kerberos_identities/nm%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "nodemanager_nm",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "nm/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/hosts/host3/kerberos_identities/zookeeper%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "ams_zookeeper",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "ams",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/zk.service.ams.keytab",
> "principal_local_username" : "ams",
> "principal_name" : "zookeeper/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> }
> ]
> }
> ]
> }
> {code}
> {code:title=GET /api/v1/clusters/c1/hosts?fields=kerberos_identities/*&format=csv}
> host,description,principal name,principal type,local username,keytab file path,keytab file owner,keytab file owner access,keytab file group,keytab file group access,keytab file mode,keytab file installed
> host1,/spnego,HTTP/host1@EXAMPLE.COM,SERVICE,,/etc/security/keytabs/spnego.service.keytab,root,r,hadoop,r,440,true
> host1,/smokeuser,ambari-qa@EXAMPLE.COM,USER,ambari-qa,/etc/security/keytabs/smokeuser.headless.keytab,ambari-qa,r,hadoop,r,440,true
> host1,datanode_dn,dn/host1@EXAMPLE.COM,SERVICE,hdfs,/etc/security/keytabs/dn.service.keytab,hdfs,r,hadoop,,400,true
> host1,/hdfs,hdfs@EXAMPLE.COM,USER,hdfs,/etc/security/keytabs/hdfs.headless.keytab,hdfs,r,hadoop,r,440,true
> host1,nodemanager_nm,nm/host1@EXAMPLE.COM,SERVICE,yarn,/etc/security/keytabs/nm.service.keytab,yarn,r,hadoop,,400,true
> host1,namenode_nn,nn/host1@EXAMPLE.COM,SERVICE,hdfs,/etc/security/keytabs/nn.service.keytab,hdfs,r,hadoop,,400,true
> host1,zookeeper_zk,zookeeper/host1@EXAMPLE.COM,SERVICE,,/etc/security/keytabs/zk.service.keytab,zookeeper,r,hadoop,,400,true
> host2,/spnego,HTTP/host2@EXAMPLE.COM,SERVICE,,/etc/security/keytabs/spnego.service.keytab,root,r,hadoop,r,440,true
> host2,/smokeuser,ambari-qa@EXAMPLE.COM,USER,ambari-qa,/etc/security/keytabs/smokeuser.headless.keytab,ambari-qa,r,hadoop,r,440,true
> host2,datanode_dn,dn/host2@EXAMPLE.COM,SERVICE,hdfs,/etc/security/keytabs/dn.service.keytab,hdfs,r,hadoop,,400,true
> host2,/hdfs,hdfs@EXAMPLE.COM,USER,hdfs,/etc/security/keytabs/hdfs.headless.keytab,hdfs,r,hadoop,r,440,true
> host2,history_server_jhs,jhs/host2@EXAMPLE.COM,SERVICE,mapred,/etc/security/keytabs/jhs.service.keytab,mapred,r,hadoop,,400,true
> host2,nodemanager_nm,nm/host2@EXAMPLE.COM,SERVICE,yarn,/etc/security/keytabs/nm.service.keytab,yarn,r,hadoop,,400,true
> host2,secondary_namenode_nn,nn/host2@EXAMPLE.COM,SERVICE,hdfs,/etc/security/keytabs/nn.service.keytab,hdfs,r,hadoop,,400,true
> host2,resource_manager_rm,rm/host2@EXAMPLE.COM,SERVICE,yarn,/etc/security/keytabs/rm.service.keytab,yarn,r,hadoop,,400,true
> host2,app_timeline_server_yarn,yarn/host2@EXAMPLE.COM,SERVICE,yarn,/etc/security/keytabs/yarn.service.keytab,yarn,r,hadoop,,400,true
> host2,zookeeper_zk,zookeeper/host2@EXAMPLE.COM,SERVICE,,/etc/security/keytabs/zk.service.keytab,zookeeper,r,hadoop,,400,true
> host3,/spnego,HTTP/host3@EXAMPLE.COM,SERVICE,,/etc/security/keytabs/spnego.service.keytab,root,r,hadoop,r,440,true
> host3,/smokeuser,ambari-qa@EXAMPLE.COM,USER,ambari-qa,/etc/security/keytabs/smokeuser.headless.keytab,ambari-qa,r,hadoop,r,440,true
> host3,ams_hbase_master_hbase,amshbase/host3@EXAMPLE.COM,SERVICE,ams,/etc/security/keytabs/ams-hbase.master.keytab,ams,r,hadoop,,400,true
> host3,datanode_dn,dn/host3@EXAMPLE.COM,SERVICE,hdfs,/etc/security/keytabs/dn.service.keytab,hdfs,r,hadoop,,400,true
> host3,/hdfs,hdfs@EXAMPLE.COM,USER,hdfs,/etc/security/keytabs/hdfs.headless.keytab,hdfs,r,hadoop,r,440,true
> host3,nodemanager_nm,nm/host3@EXAMPLE.COM,SERVICE,yarn,/etc/security/keytabs/nm.service.keytab,yarn,r,hadoop,,400,true
> host3,ams_zookeeper,zookeeper/host3@EXAMPLE.COM,SERVICE,ams,/etc/security/keytabs/zk.service.ams.keytab,ams,r,hadoop,,400,true
> {code}
> {code:title=GET /api/v1/clusters/c1/kerberos_identities?fields=*}
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities?fields=*",
> "items" : [
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/HTTP%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/spnego",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "root",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/spnego.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "HTTP/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/ambari-qa%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/smokeuser",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "ambari-qa",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/smokeuser.headless.keytab",
> "principal_local_username" : "ambari-qa",
> "principal_name" : "ambari-qa@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/dn%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "datanode_dn",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/dn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "dn/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/hdfs%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/hdfs",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/hdfs.headless.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "hdfs@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/nm%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "nodemanager_nm",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "nm/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/nn%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "namenode_nn",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "nn/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/zookeeper%2Fhost1%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "zookeeper_zk",
> "host_name" : "host1",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "zookeeper",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/zk.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "zookeeper/host1@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/HTTP%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/spnego",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "root",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/spnego.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "HTTP/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/ambari-qa%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/smokeuser",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "ambari-qa",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/smokeuser.headless.keytab",
> "principal_local_username" : "ambari-qa",
> "principal_name" : "ambari-qa@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/dn%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "datanode_dn",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/dn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "dn/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/hdfs%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/hdfs",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/hdfs.headless.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "hdfs@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/jhs%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "history_server_jhs",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "mapred",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/jhs.service.keytab",
> "principal_local_username" : "mapred",
> "principal_name" : "jhs/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/nm%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "nodemanager_nm",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "nm/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/nn%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "secondary_namenode_nn",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "nn/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/rm%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "resource_manager_rm",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/rm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "rm/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/yarn%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "app_timeline_server_yarn",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/yarn.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "yarn/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/zookeeper%2Fhost2%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "zookeeper_zk",
> "host_name" : "host2",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "zookeeper",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/zk.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "zookeeper/host2@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/HTTP%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/spnego",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "root",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/spnego.service.keytab",
> "principal_local_username" : null,
> "principal_name" : "HTTP/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/ambari-qa%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/smokeuser",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "ambari-qa",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/smokeuser.headless.keytab",
> "principal_local_username" : "ambari-qa",
> "principal_name" : "ambari-qa@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/amshbase%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "ams_hbase_master_hbase",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "ams",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/ams-hbase.master.keytab",
> "principal_local_username" : "ams",
> "principal_name" : "amshbase/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/dn%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "datanode_dn",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/dn.service.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "dn/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/hdfs%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "/hdfs",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "r",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "440",
> "keytab_file_owner" : "hdfs",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/hdfs.headless.keytab",
> "principal_local_username" : "hdfs",
> "principal_name" : "hdfs@EXAMPLE.COM",
> "principal_type" : "USER"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/nm%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "nodemanager_nm",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "yarn",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/nm.service.keytab",
> "principal_local_username" : "yarn",
> "principal_name" : "nm/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> },
> {
> "href" : "http://ambari:8080/api/v1/clusters/c1/kerberos_identities/zookeeper%2Fhost3%40EXAMPLE.COM",
> "KerberosIdentity" : {
> "cluster_name" : "c1",
> "description" : "ams_zookeeper",
> "host_name" : "host3",
> "keytab_file_group" : "hadoop",
> "keytab_file_group_access" : "",
> "keytab_file_installed" : "true",
> "keytab_file_mode" : "400",
> "keytab_file_owner" : "ams",
> "keytab_file_owner_access" : "r",
> "keytab_file_path" : "/etc/security/keytabs/zk.service.ams.keytab",
> "principal_local_username" : "ams",
> "principal_name" : "zookeeper/host3@EXAMPLE.COM",
> "principal_type" : "SERVICE"
> }
> }
> ]
> }
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)