ambari-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Alejandro Fernandez" <afernan...@hortonworks.com>
Subject Review Request 27667: ATS should remain enabled after kerberization, and keytab owner should be yarn
Date Thu, 06 Nov 2014 04:57:55 GMT

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/27667/
-----------------------------------------------------------

Review request for Ambari, Jaimin Jetly, Mahadev Konar, Sumit Mohanty, Srimanth Gunturi, Sid
Wagle, and Yusaku Sako.


Bugs: AMBARI-8177
    https://issues.apache.org/jira/browse/AMBARI-8177


Repository: ambari


Description
-------

In HDP 2.2, after kerberizing the cluster, the yarn.timeline-service.enabled property is set
to false; this should remain "true" if using HDP 2.2 or higher.
Further, the Security Wizard allows downloading the csv file, but the owner for the yarn.service.keytab
file should be yarn instead of root.


Diffs
-----

  ambari-web/app/controllers/main/admin/security/add/step3.js 2bcd59c 
  ambari-web/app/data/HDP2/secure_mapping.js 191bb63 
  ambari-web/app/data/HDP2/secure_properties.js ccc942e 
  ambari-web/app/messages.js 531532e 

Diff: https://reviews.apache.org/r/27667/diff/


Testing
-------

Deployed an HDP 2.2 cluster and pointed the app.js file to my local version, then kerberized
the cluster and verified the following:
1. Security Wizard showed section for Application Timeline Server
2. Downloaded .csv file had "yarn" as the owner for yarn.service.keytab
3. yarn.timeline-service.enabled remained as true

Ran unit tests in ambari-server.

Total run:684
Total errors:0
Total failures:0
OK


Thanks,

Alejandro Fernandez


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message