You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@knox.apache.org by su...@apache.org on 2015/11/16 20:45:43 UTC
knox git commit: KNOX-625 initial template file for topology using ui
proxy services
Repository: knox
Updated Branches:
refs/heads/master 319ec0e46 -> fa56190a3
KNOX-625 initial template file for topology using ui proxy services
Project: http://git-wip-us.apache.org/repos/asf/knox/repo
Commit: http://git-wip-us.apache.org/repos/asf/knox/commit/fa56190a
Tree: http://git-wip-us.apache.org/repos/asf/knox/tree/fa56190a
Diff: http://git-wip-us.apache.org/repos/asf/knox/diff/fa56190a
Branch: refs/heads/master
Commit: fa56190a3de7d33ac07392f81def235bdb2d258c
Parents: 319ec0e
Author: Sumit Gupta <su...@apache.org>
Authored: Mon Nov 16 14:44:43 2015 -0500
Committer: Sumit Gupta <su...@apache.org>
Committed: Mon Nov 16 14:44:43 2015 -0500
----------------------------------------------------------------------
gateway-release/home/templates/ui.xml | 141 +++++++++++++++++++++++++++++
1 file changed, 141 insertions(+)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/knox/blob/fa56190a/gateway-release/home/templates/ui.xml
----------------------------------------------------------------------
diff --git a/gateway-release/home/templates/ui.xml b/gateway-release/home/templates/ui.xml
new file mode 100644
index 0000000..e0efc97
--- /dev/null
+++ b/gateway-release/home/templates/ui.xml
@@ -0,0 +1,141 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!--
+ Licensed to the Apache Software Foundation (ASF) under one or more
+ contributor license agreements. See the NOTICE file distributed with
+ this work for additional information regarding copyright ownership.
+ The ASF licenses this file to You under the Apache License, Version 2.0
+ (the "License"); you may not use this file except in compliance with
+ the License. You may obtain a copy of the License at
+
+ http://www.apache.org/licenses/LICENSE-2.0
+
+ Unless required by applicable law or agreed to in writing, software
+ distributed under the License is distributed on an "AS IS" BASIS,
+ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ See the License for the specific language governing permissions and
+ limitations under the License.
+-->
+<topology>
+
+ <gateway>
+
+ <provider>
+ <role>authentication</role>
+ <name>ShiroProvider</name>
+ <enabled>true</enabled>
+ <param>
+ <!--
+ session timeout in minutes, this is really idle timeout,
+ defaults to 30mins, if the property value is not defined,,
+ current client authentication would expire if client idles contiuosly for more than this value
+ -->
+ <name>sessionTimeout</name>
+ <value>30</value>
+ </param>
+ <param>
+ <name>main.ldapRealm</name>
+ <value>org.apache.hadoop.gateway.shirorealm.KnoxLdapRealm</value>
+ </param>
+ <param>
+ <name>main.ldapContextFactory</name>
+ <value>org.apache.hadoop.gateway.shirorealm.KnoxLdapContextFactory</value>
+ </param>
+ <param>
+ <name>main.ldapRealm.contextFactory</name>
+ <value>$ldapContextFactory</value>
+ </param>
+ <param>
+ <name>main.ldapRealm.userDnTemplate</name>
+ <value>uid={0},ou=people,dc=hadoop,dc=apache,dc=org</value>
+ </param>
+ <param>
+ <name>main.ldapRealm.contextFactory.url</name>
+ <value>ldap://localhost:33389</value>
+ </param>
+ <param>
+ <name>main.ldapRealm.contextFactory.authenticationMechanism</name>
+ <value>simple</value>
+ </param>
+ <param>
+ <name>urls./**</name>
+ <value>authcBasic</value>
+ </param>
+ </provider>
+
+ <provider>
+ <role>identity-assertion</role>
+ <name>Default</name>
+ <enabled>true</enabled>
+ </provider>
+
+ <!--
+ Defines rules for mapping host names internal to a Hadoop cluster to externally accessible host names.
+ For example, a hadoop service running in AWS may return a response that includes URLs containing the
+ some AWS internal host name. If the client needs to make a subsequent request to the host identified
+ in those URLs they need to be mapped to external host names that the client Knox can use to connect.
+
+ If the external hostname and internal host names are same turn of this provider by setting the value of
+ enabled parameter as false.
+
+ The name parameter specifies the external host names in a comma separated list.
+ The value parameter specifies corresponding internal host names in a comma separated list.
+
+ Note that when you are using Sandbox, the external hostname needs to be localhost, as seen in out
+ of box sandbox.xml. This is because Sandbox uses port mapping to allow clients to connect to the
+ Hadoop services using localhost. In real clusters, external host names would almost never be localhost.
+ -->
+ <provider>
+ <role>hostmap</role>
+ <name>static</name>
+ <enabled>true</enabled>
+ <param><name>localhost</name><value>sandbox,sandbox.hortonworks.com</value></param>
+ </provider>
+
+ </gateway>
+
+ <service>
+ <role>NAMENODE</role>
+ <url>hdfs://localhost:8020</url>
+ </service>
+
+ <service>
+ <role>JOBTRACKER</role>
+ <url>rpc://localhost:8050</url>
+ </service>
+
+ <service>
+ <role>WEBHDFS</role>
+ <url>http://localhost:50070/webhdfs</url>
+ </service>
+
+ <service>
+ <role>HDFSUI</role>
+ <url>http://localhost:50070</url>
+ </service>
+
+ <service>
+ <role>YARNUI</role>
+ <url>http://localhost:8088</url>
+ </service>
+
+ <service>
+ <role>HBASEUI</role>
+ <url>http://localhost:16010</url>
+ </service>
+
+ <service>
+ <role>OOZIEUI</role>
+ <url>http://localhost:11000/oozie/</url>
+ </service>
+
+ <service>
+ <role>JOBHISTORYUI</role>
+ <url>http://localhost:19888</url>
+ </service>
+
+ <service>
+ <role>SPARKHISTORYUI</role>
+ <url>http://localhost:18080/</url>
+ </service>
+
+</topology>