ambari-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Hudson (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (AMBARI-17964) Hive Ranger plug in broken after upgrade to HDP 2.4.0
Date Fri, 29 Jul 2016 20:56:20 GMT

    [ https://issues.apache.org/jira/browse/AMBARI-17964?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15399990#comment-15399990
] 

Hudson commented on AMBARI-17964:
---------------------------------

SUCCESS: Integrated in Ambari-trunk-Commit #5417 (See [https://builds.apache.org/job/Ambari-trunk-Commit/5417/])
AMBARI-17964. Hive Ranger plug in broken after upgrade to HDP 2.4.0 (dlysnichenko: [http://git-wip-us.apache.org/repos/asf?p=ambari.git&a=commit&h=957189c540fa5adbb72dec0d86b164f7ee1fef81])
* ambari-server/src/main/java/org/apache/ambari/server/upgrade/AbstractUpgradeCatalog.java
* ambari-server/src/test/java/org/apache/ambari/server/upgrade/UpgradeCatalog210Test.java
* ambari-server/src/main/java/org/apache/ambari/server/upgrade/UpgradeCatalog210.java


> Hive Ranger plug in broken after upgrade to HDP 2.4.0
> -----------------------------------------------------
>
>                 Key: AMBARI-17964
>                 URL: https://issues.apache.org/jira/browse/AMBARI-17964
>             Project: Ambari
>          Issue Type: Bug
>          Components: ambari-server
>    Affects Versions: 2.4.0
>            Reporter: Dmitry Lysnichenko
>            Assignee: Dmitry Lysnichenko
>             Fix For: 2.4.0
>
>         Attachments: AMBARI-17964.patch
>
>
> I've managed to reproduce the issue during Ambari upgrade 2.0.2 to 2.2.1.1.
> The issue seems to be that hive_security_authorization is missing in 2.0.2, so during
upgrade hive_security_authorization it is added with value None (because code supports only
Kerberos, and not Ranger), and then {{hive.security.authorization.manager}} and {{hive.security.authenticator.manager}}
are  immediately removed at UpgradeCatalog210 if hive_security_authorization value is None.
> {code}
> boolean isHiveSecurityAuthPresent = cluster.getDesiredConfigByType("hive-env").getProperties().containsKey("hive_security_authorization");
> String hiveSecurityAuth="";
> if ("kerberos".equalsIgnoreCase(hive_server2_auth) && cluster.getServices().containsKey("KERBEROS")){
> hiveSecurityAuth = "SQLStdAuth";
> isHiveSecurityAuthPresent = true;
> hiveEnvProps.put("hive_security_authorization", hiveSecurityAuth);
> } else {
> if (isHiveSecurityAuthPresent) {
> hiveSecurityAuth = cluster.getDesiredConfigByType("hive-env").getProperties().get("hive_security_authorization");
> }
> }
> if (isHiveSecurityAuthPresent && "none".equalsIgnoreCase(hiveSecurityAuth)) {
> hiveServerSiteRemoveProps.add("hive.security.authorization.manager");
> hiveServerSiteRemoveProps.add("hive.security.authenticator.manager");
> }
> updateConfigurationPropertiesForCluster(cluster, "hive-env", hiveEnvProps, true, true);
> removeConfigurationPropertiesFromCluster(cluster, "hiveserver2-site", hiveServerSiteRemoveProps);
> }
> {code}



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message