hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Owen O'Malley (JIRA)" <j...@apache.org>
Subject [jira] Issue Comment Edited: (HADOOP-6526) Need mapping from long principal names to local OS user names
Date Sat, 30 Jan 2010 17:14:34 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-6526?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12806705#action_12806705
] 

Owen O'Malley edited comment on HADOOP-6526 at 1/30/10 5:13 PM:
----------------------------------------------------------------

Currently, UGI has getShortUserName which truncates the user name at the first '@' or '/'.
I propose we replace that with a getLocalName that applies the configured mapping to create
the local user name.

The administrator creates a file (user.mapping) with one rule per a line, the rules are attempted
in the order listed in the file, and only the first rules that applies is used. '\*' is a
wildcard that matches 0 or more characters other than '/' and '@'. The value that matched
the nth '\*' is available to the rules as \n.

The translation fails with an exception if the resulting name contains either '/' or '@'.

The default rules would be:
{noformat}
*/*@* -> \1
*@* -> \1
{noformat}
which just keeps the prefix of each principal.

There will be a command line tool that you can invoke to translate a list of long names into
their local equivalents.


      was (Author: owen.omalley):
    Currently, UGI has getShortUserName which truncates the user name at the first '@' or
'/'. I propose we replace that with a getLocalName that applies the configured mapping to
create the local user name.

The administrator creates a file (user.mapping) with one rule per a line, the rules are attempted
in the order listed in the file, and only the first rules that applies is used. '*' is a wildcard
that matches 0 or more characters other than '/' and '@'. The value that matched the nth '*'
is available to the rules as \n.

The translation fails with an exception if the resulting name contains either '/' or '@'.

The default rules would be:
{noformat}
*/*@* -> \1
*@* -> \1
{noformat}
which just keeps the prefix of each principal.

There will be a command line tool that you can invoke to translate a list of long names into
their local equivalents.

  
> Need mapping from long principal names to local OS user names
> -------------------------------------------------------------
>
>                 Key: HADOOP-6526
>                 URL: https://issues.apache.org/jira/browse/HADOOP-6526
>             Project: Hadoop Common
>          Issue Type: Improvement
>            Reporter: Owen O'Malley
>            Assignee: Owen O'Malley
>
> We need a configurable mapping from full user names (eg. omalley@APACHE.ORG) to local
user names (eg. omalley). For many organizations it is sufficient to just use the prefix,
however, in the case of shared clusters there may be duplicated prefixes. A configurable mapping
will let administrators resolve the issue.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message