drill-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bridg...@apache.org
Subject drill git commit: minor Bridget's edits
Date Thu, 02 Jul 2015 00:05:35 GMT
Repository: drill
Updated Branches:
  refs/heads/gh-pages 4be94a15d -> f0a7565fb


minor Bridget's edits


Project: http://git-wip-us.apache.org/repos/asf/drill/repo
Commit: http://git-wip-us.apache.org/repos/asf/drill/commit/f0a7565f
Tree: http://git-wip-us.apache.org/repos/asf/drill/tree/f0a7565f
Diff: http://git-wip-us.apache.org/repos/asf/drill/diff/f0a7565f

Branch: refs/heads/gh-pages
Commit: f0a7565fb9b6c2b83ef3a3df6c39a597b6b12bd7
Parents: 4be94a1
Author: Kristine Hahn <khahn@maprtech.com>
Authored: Wed Jul 1 17:02:55 2015 -0700
Committer: Kristine Hahn <khahn@maprtech.com>
Committed: Wed Jul 1 17:02:55 2015 -0700

----------------------------------------------------------------------
 ...ser-impersonation-with-hive-authorization.md | 34 +++++++++-----------
 1 file changed, 16 insertions(+), 18 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/drill/blob/f0a7565f/_docs/configure-drill/076-configuring-user-impersonation-with-hive-authorization.md
----------------------------------------------------------------------
diff --git a/_docs/configure-drill/076-configuring-user-impersonation-with-hive-authorization.md
b/_docs/configure-drill/076-configuring-user-impersonation-with-hive-authorization.md
index 86a799b..bd16195 100644
--- a/_docs/configure-drill/076-configuring-user-impersonation-with-hive-authorization.md
+++ b/_docs/configure-drill/076-configuring-user-impersonation-with-hive-authorization.md
@@ -30,10 +30,10 @@ Once you determine the Hive authorization model that you want to implement,
enab
 
 ### Prerequisites  
 
-* Hive 1.0 installed
-* Drill 1.1 installed
-* Hive remote metastore repository configured  
-
+* Hive 1.0 installed
+* Drill 1.1 installed
+* Hive remote metastore repository configured  
+
 ## Step 1: Enabling Drill Impersonation  
 
 Complete the following steps on each Drillbit node to enable user impersonation, and set
the [maximum number of chained user hops]({{site.baseurl}}/docs/configuring-user-impersonation/#chained-impersonation)
that Drill allows:  
@@ -53,7 +53,7 @@ Complete the following steps on each Drillbit node to enable user impersonation,
    ` export MAPR_IMPERSONATION_ENABLED=true`
    * If the underlying file system has MapR security enabled, add the following line:
     `export MAPR_TICKETFILE_LOCATION=/opt/mapr/conf/mapruserticket`  
-   * If you are implementing Hive SQL standard based authorization, and you are running Drill
    and Hive in a secure MapR cluster, add the following lines:  
+   * If you are implementing Hive SQL standard based authorization, and you are running Drill
    and Hive in a secure MapR cluster, add the following lines:  
         `export DRILLBIT_JAVA_OPTS="$DRILLBIT_JAVA_OPTS -Dmapr_sec_enabled=true -Dhadoop.login=maprsasl
-Dzookeeper.saslprovider=com.mapr.security.maprsasl.MaprSaslProvider -Dmapr.library.flatclass"`
 
        `export MAPR_IMPERSONATION_ENABLED=true`  
        `export MAPR_TICKETFILE_LOCATION=/opt/mapr/conf/mapruserticket`
@@ -89,11 +89,11 @@ Add the following required authorization parameters in hive-site.xml to
configur
 **Value:** true  
 
 **hive.metastore.execute.setugi**  
-**Description:** Causes the metastore to execute file system operations using the client's
reported user and group permissions. You must set this property on both the client and server
sides. If client sets it to true and server sets it to false, the client setting is ignored.
+**Description:** Causes the metastore to execute file system operations using the client's
reported user and group permissions. You must set this property on both the client and server
sides. If client sets it to true and server sets it to false, the client setting is ignored.
 
 **Value:** true 
 
 **hive.server2.enable.doAs**  
-**Description:** Tells HiveServer2 to execute Hive operations as the user making the calls.

+**Description:** Tells HiveServer2 to execute Hive operations as the user making the calls.
 
 **Value:** true 
 
 
@@ -140,7 +140,7 @@ Add the following required authorization parameters in hive-site.xml to
configur
 
 **hive.security.authenticator.manager**  
 **Description:** Class that implements HiveAuthenticationProvider to provide the client’s
username and groups.  
-**Value:** Set to:org.apache.hadoop.hive.ql.security.SessionStateUserAuthenticator  
+**Value:** org.apache.hadoop.hive.ql.security.SessionStateUserAuthenticator  
 
 **hive.security.authorization.manager**  
 **Description:** The Hive client authorization manager class name.   
@@ -198,11 +198,11 @@ Note: The metastore host port for MapR is typically 9083.
 
 Complete the following steps to modify the Hive storage plugin:  
 
-1.  Navigate to `http://<drillbit_hostname>:8047`, and select the **Storage tab**.
 
-2.  Click **Update** next to the hive instance.  
-3.  In the configuration window, add the configuration settings for the authorization type.
 
-       * For storage based authorization, add the following settings:  
-
+1.  Navigate to `http://<drillbit_hostname>:8047`, and select the **Storage tab**.
 
+2.  Click **Update** next to the hive instance.  
+3.  In the configuration window, add the configuration settings for the authorization type.
 
+    * For storage based authorization, add the following settings:  
+
               {
                type:"hive",
                enabled: true,
@@ -213,11 +213,9 @@ Complete the following steps to modify the Hive storage plugin:
                  "hive.server2.enable.doAs" : "true",
                  "hive.metastore.execute.setugi" : "true"
                }
-              }  
-
-       * For SQL standard based authorization, add the following settings:  
-
-
+              }  
+   * For SQL standard based authorization, add the following settings:  
+
               {
                type:"hive",
                enabled: true,


Mime
View raw message