You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ambari.apache.org by Alejandro Fernandez <af...@hortonworks.com> on 2014/11/06 05:57:55 UTC
Review Request 27667: ATS should remain enabled after kerberization,
and keytab owner should be yarn
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/27667/
-----------------------------------------------------------
Review request for Ambari, Jaimin Jetly, Mahadev Konar, Sumit Mohanty, Srimanth Gunturi, Sid Wagle, and Yusaku Sako.
Bugs: AMBARI-8177
https://issues.apache.org/jira/browse/AMBARI-8177
Repository: ambari
Description
-------
In HDP 2.2, after kerberizing the cluster, the yarn.timeline-service.enabled property is set to false; this should remain "true" if using HDP 2.2 or higher.
Further, the Security Wizard allows downloading the csv file, but the owner for the yarn.service.keytab file should be yarn instead of root.
Diffs
-----
ambari-web/app/controllers/main/admin/security/add/step3.js 2bcd59c
ambari-web/app/data/HDP2/secure_mapping.js 191bb63
ambari-web/app/data/HDP2/secure_properties.js ccc942e
ambari-web/app/messages.js 531532e
Diff: https://reviews.apache.org/r/27667/diff/
Testing
-------
Deployed an HDP 2.2 cluster and pointed the app.js file to my local version, then kerberized the cluster and verified the following:
1. Security Wizard showed section for Application Timeline Server
2. Downloaded .csv file had "yarn" as the owner for yarn.service.keytab
3. yarn.timeline-service.enabled remained as true
Ran unit tests in ambari-server.
Total run:684
Total errors:0
Total failures:0
OK
Thanks,
Alejandro Fernandez
Re: Review Request 27667: ATS should remain enabled after
kerberization, and keytab owner should be yarn
Posted by Yusaku Sako <yu...@hortonworks.com>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/27667/#review60122
-----------------------------------------------------------
Ship it!
Ship It!
- Yusaku Sako
On Nov. 6, 2014, 4:57 a.m., Alejandro Fernandez wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/27667/
> -----------------------------------------------------------
>
> (Updated Nov. 6, 2014, 4:57 a.m.)
>
>
> Review request for Ambari, Jaimin Jetly, Mahadev Konar, Sumit Mohanty, Srimanth Gunturi, Sid Wagle, and Yusaku Sako.
>
>
> Bugs: AMBARI-8177
> https://issues.apache.org/jira/browse/AMBARI-8177
>
>
> Repository: ambari
>
>
> Description
> -------
>
> In HDP 2.2, after kerberizing the cluster, the yarn.timeline-service.enabled property is set to false; this should remain "true" if using HDP 2.2 or higher.
> Further, the Security Wizard allows downloading the csv file, but the owner for the yarn.service.keytab file should be yarn instead of root.
>
>
> Diffs
> -----
>
> ambari-web/app/controllers/main/admin/security/add/step3.js 2bcd59c
> ambari-web/app/data/HDP2/secure_mapping.js 191bb63
> ambari-web/app/data/HDP2/secure_properties.js ccc942e
> ambari-web/app/messages.js 531532e
>
> Diff: https://reviews.apache.org/r/27667/diff/
>
>
> Testing
> -------
>
> Deployed an HDP 2.2 cluster and pointed the app.js file to my local version, then kerberized the cluster and verified the following:
> 1. Security Wizard showed section for Application Timeline Server
> 2. Downloaded .csv file had "yarn" as the owner for yarn.service.keytab
> 3. yarn.timeline-service.enabled remained as true
>
> Ran unit tests in ambari-server.
>
> Total run:684
> Total errors:0
> Total failures:0
> OK
>
>
> Thanks,
>
> Alejandro Fernandez
>
>
Re: Review Request 27667: ATS should remain enabled after
kerberization, and keytab owner should be yarn
Posted by Mahadev Konar <ma...@apache.org>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/27667/#review60120
-----------------------------------------------------------
Ship it!
Ship It!
- Mahadev Konar
On Nov. 6, 2014, 4:57 a.m., Alejandro Fernandez wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/27667/
> -----------------------------------------------------------
>
> (Updated Nov. 6, 2014, 4:57 a.m.)
>
>
> Review request for Ambari, Jaimin Jetly, Mahadev Konar, Sumit Mohanty, Srimanth Gunturi, Sid Wagle, and Yusaku Sako.
>
>
> Bugs: AMBARI-8177
> https://issues.apache.org/jira/browse/AMBARI-8177
>
>
> Repository: ambari
>
>
> Description
> -------
>
> In HDP 2.2, after kerberizing the cluster, the yarn.timeline-service.enabled property is set to false; this should remain "true" if using HDP 2.2 or higher.
> Further, the Security Wizard allows downloading the csv file, but the owner for the yarn.service.keytab file should be yarn instead of root.
>
>
> Diffs
> -----
>
> ambari-web/app/controllers/main/admin/security/add/step3.js 2bcd59c
> ambari-web/app/data/HDP2/secure_mapping.js 191bb63
> ambari-web/app/data/HDP2/secure_properties.js ccc942e
> ambari-web/app/messages.js 531532e
>
> Diff: https://reviews.apache.org/r/27667/diff/
>
>
> Testing
> -------
>
> Deployed an HDP 2.2 cluster and pointed the app.js file to my local version, then kerberized the cluster and verified the following:
> 1. Security Wizard showed section for Application Timeline Server
> 2. Downloaded .csv file had "yarn" as the owner for yarn.service.keytab
> 3. yarn.timeline-service.enabled remained as true
>
> Ran unit tests in ambari-server.
>
> Total run:684
> Total errors:0
> Total failures:0
> OK
>
>
> Thanks,
>
> Alejandro Fernandez
>
>
Re: Review Request 27667: ATS should remain enabled after
kerberization, and keytab owner should be yarn
Posted by Yusaku Sako <yu...@hortonworks.com>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/27667/#review60217
-----------------------------------------------------------
Ship it!
Ship It!
- Yusaku Sako
On Nov. 6, 2014, 7:15 p.m., Alejandro Fernandez wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/27667/
> -----------------------------------------------------------
>
> (Updated Nov. 6, 2014, 7:15 p.m.)
>
>
> Review request for Ambari, Jaimin Jetly, Mahadev Konar, Sumit Mohanty, Srimanth Gunturi, Sid Wagle, and Yusaku Sako.
>
>
> Bugs: AMBARI-8177
> https://issues.apache.org/jira/browse/AMBARI-8177
>
>
> Repository: ambari
>
>
> Description
> -------
>
> In HDP 2.2, after kerberizing the cluster, the yarn.timeline-service.enabled property is set to false; this should remain "true" if using HDP 2.2 or higher.
> Further, the Security Wizard allows downloading the csv file, but the owner for the yarn.service.keytab file should be yarn instead of root.
>
>
> Diffs
> -----
>
> ambari-web/app/controllers/main/admin/security.js 39eec54
> ambari-web/app/controllers/main/admin/security/add/step3.js 2bcd59c
> ambari-web/app/data/HDP2/secure_mapping.js 191bb63
> ambari-web/app/data/HDP2/secure_properties.js ccc942e
> ambari-web/app/messages.js 531532e
>
> Diff: https://reviews.apache.org/r/27667/diff/
>
>
> Testing
> -------
>
> Deployed an HDP 2.2 cluster and pointed the app.js file to my local version, then kerberized the cluster and verified the following:
> 1. Security Wizard showed section for Application Timeline Server
> 2. Downloaded .csv file had "yarn" as the owner for yarn.service.keytab
> 3. yarn.timeline-service.enabled remained as true
>
> Ran unit tests in ambari-server.
>
> Total run:684
> Total errors:0
> Total failures:0
> OK
>
>
> Thanks,
>
> Alejandro Fernandez
>
>
Re: Review Request 27667: ATS should remain enabled after
kerberization, and keytab owner should be yarn
Posted by Jaimin Jetly <ja...@hortonworks.com>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/27667/#review60220
-----------------------------------------------------------
Ship it!
Ship It!
- Jaimin Jetly
On Nov. 6, 2014, 7:15 p.m., Alejandro Fernandez wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/27667/
> -----------------------------------------------------------
>
> (Updated Nov. 6, 2014, 7:15 p.m.)
>
>
> Review request for Ambari, Jaimin Jetly, Mahadev Konar, Sumit Mohanty, Srimanth Gunturi, Sid Wagle, and Yusaku Sako.
>
>
> Bugs: AMBARI-8177
> https://issues.apache.org/jira/browse/AMBARI-8177
>
>
> Repository: ambari
>
>
> Description
> -------
>
> In HDP 2.2, after kerberizing the cluster, the yarn.timeline-service.enabled property is set to false; this should remain "true" if using HDP 2.2 or higher.
> Further, the Security Wizard allows downloading the csv file, but the owner for the yarn.service.keytab file should be yarn instead of root.
>
>
> Diffs
> -----
>
> ambari-web/app/controllers/main/admin/security.js 39eec54
> ambari-web/app/controllers/main/admin/security/add/step3.js 2bcd59c
> ambari-web/app/data/HDP2/secure_mapping.js 191bb63
> ambari-web/app/data/HDP2/secure_properties.js ccc942e
> ambari-web/app/messages.js 531532e
>
> Diff: https://reviews.apache.org/r/27667/diff/
>
>
> Testing
> -------
>
> Deployed an HDP 2.2 cluster and pointed the app.js file to my local version, then kerberized the cluster and verified the following:
> 1. Security Wizard showed section for Application Timeline Server
> 2. Downloaded .csv file had "yarn" as the owner for yarn.service.keytab
> 3. yarn.timeline-service.enabled remained as true
>
> Ran unit tests in ambari-server.
>
> Total run:684
> Total errors:0
> Total failures:0
> OK
>
>
> Thanks,
>
> Alejandro Fernandez
>
>
Re: Review Request 27667: ATS should remain enabled after
kerberization, and keytab owner should be yarn
Posted by Alejandro Fernandez <af...@hortonworks.com>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/27667/
-----------------------------------------------------------
(Updated Nov. 6, 2014, 7:15 p.m.)
Review request for Ambari, Jaimin Jetly, Mahadev Konar, Sumit Mohanty, Srimanth Gunturi, Sid Wagle, and Yusaku Sako.
Changes
-------
Fixed another issue where the ATS section did not appear in the Security Wizard after kerberizing the cluster.
Bugs: AMBARI-8177
https://issues.apache.org/jira/browse/AMBARI-8177
Repository: ambari
Description
-------
In HDP 2.2, after kerberizing the cluster, the yarn.timeline-service.enabled property is set to false; this should remain "true" if using HDP 2.2 or higher.
Further, the Security Wizard allows downloading the csv file, but the owner for the yarn.service.keytab file should be yarn instead of root.
Diffs (updated)
-----
ambari-web/app/controllers/main/admin/security.js 39eec54
ambari-web/app/controllers/main/admin/security/add/step3.js 2bcd59c
ambari-web/app/data/HDP2/secure_mapping.js 191bb63
ambari-web/app/data/HDP2/secure_properties.js ccc942e
ambari-web/app/messages.js 531532e
Diff: https://reviews.apache.org/r/27667/diff/
Testing
-------
Deployed an HDP 2.2 cluster and pointed the app.js file to my local version, then kerberized the cluster and verified the following:
1. Security Wizard showed section for Application Timeline Server
2. Downloaded .csv file had "yarn" as the owner for yarn.service.keytab
3. yarn.timeline-service.enabled remained as true
Ran unit tests in ambari-server.
Total run:684
Total errors:0
Total failures:0
OK
Thanks,
Alejandro Fernandez