Example 21 with TCredentials
use of org.apache.accumulo.core.securityImpl.thrift.TCredentials in project accumulo by apache.
the class CompactionCoordinatorTest method testCoordinatorColdStart.
@Test
public void testCoordinatorColdStart() throws Exception {
PowerMock.resetAll();
PowerMock.suppress(PowerMock.constructor(AbstractServer.class));
PowerMock.suppress(PowerMock.methods(ThriftUtil.class, "returnClient"));
PowerMock.suppress(PowerMock.methods(DeadCompactionDetector.class, "detectDeadCompactions", "detectDanglingFinalStateMarkers"));
AccumuloConfiguration conf = PowerMock.createNiceMock(AccumuloConfiguration.class);
ServerContext context = PowerMock.createNiceMock(ServerContext.class);
TCredentials creds = PowerMock.createNiceMock(TCredentials.class);
EasyMock.expect(context.rpcCreds()).andReturn(creds);
PowerMock.mockStatic(ExternalCompactionUtil.class);
List<RunningCompaction> runningCompactions = new ArrayList<>();
EasyMock.expect(ExternalCompactionUtil.getCompactionsRunningOnCompactors(context)).andReturn(runningCompactions);
CompactionFinalizer finalizer = PowerMock.createNiceMock(CompactionFinalizer.class);
LiveTServerSet tservers = PowerMock.createNiceMock(LiveTServerSet.class);
TServerInstance instance = PowerMock.createNiceMock(TServerInstance.class);
EasyMock.expect(tservers.getCurrentServers()).andReturn(Collections.singleton(instance)).once();
ServerAddress client = PowerMock.createNiceMock(ServerAddress.class);
HostAndPort address = HostAndPort.fromString("localhost:10240");
EasyMock.expect(client.getAddress()).andReturn(address).anyTimes();
TServerInstance tsi = PowerMock.createNiceMock(TServerInstance.class);
EasyMock.expect(tsi.getHostPort()).andReturn("localhost:9997").anyTimes();
TabletClientService.Client tsc = PowerMock.createNiceMock(TabletClientService.Client.class);
TCompactionQueueSummary queueSummary = PowerMock.createNiceMock(TCompactionQueueSummary.class);
EasyMock.expect(tsc.getCompactionQueueInfo(EasyMock.anyObject(), EasyMock.anyObject())).andReturn(Collections.singletonList(queueSummary)).anyTimes();
EasyMock.expect(queueSummary.getQueue()).andReturn("R2DQ").anyTimes();
EasyMock.expect(queueSummary.getPriority()).andReturn((short) 1).anyTimes();
AuditedSecurityOperation security = PowerMock.createNiceMock(AuditedSecurityOperation.class);
PowerMock.replayAll();
TestCoordinator coordinator = new TestCoordinator(conf, finalizer, tservers, client, tsc, context, security);
coordinator.resetInternals();
assertEquals(0, coordinator.getQueues().size());
assertEquals(0, coordinator.getIndex().size());
assertEquals(0, coordinator.getRunning().size());
coordinator.run();
assertEquals(1, coordinator.getQueues().size());
QueueAndPriority qp = QueueAndPriority.get("R2DQ".intern(), (short) 1);
Map<Short, TreeSet<TServerInstance>> m = coordinator.getQueues().get("R2DQ".intern());
assertNotNull(m);
assertEquals(1, m.size());
assertTrue(m.containsKey((short) 1));
Set<TServerInstance> t = m.get((short) 1);
assertNotNull(t);
assertEquals(1, t.size());
TServerInstance queuedTsi = t.iterator().next();
assertEquals(tsi.getHostPortSession(), queuedTsi.getHostPortSession());
assertEquals(1, coordinator.getIndex().size());
assertTrue(coordinator.getIndex().containsKey(queuedTsi));
Set<QueueAndPriority> i = coordinator.getIndex().get(queuedTsi);
assertEquals(1, i.size());
assertEquals(qp, i.iterator().next());
assertEquals(0, coordinator.getRunning().size());
PowerMock.verifyAll();
coordinator.resetInternals();
coordinator.close();
}
Also used :
ThriftUtil(org.apache.accumulo.core.rpc.ThriftUtil)
ArrayList(java.util.ArrayList)
ServerAddress(org.apache.accumulo.server.rpc.ServerAddress)
AuditedSecurityOperation(org.apache.accumulo.server.security.AuditedSecurityOperation)
TCompactionQueueSummary(org.apache.accumulo.core.tabletserver.thrift.TCompactionQueueSummary)
LiveTServerSet(org.apache.accumulo.server.manager.LiveTServerSet)
HostAndPort(org.apache.accumulo.core.util.HostAndPort)
Client(org.apache.accumulo.core.tabletserver.thrift.TabletClientService.Client)
TreeSet(java.util.TreeSet)
AccumuloConfiguration(org.apache.accumulo.core.conf.AccumuloConfiguration)
TCredentials(org.apache.accumulo.core.securityImpl.thrift.TCredentials)
RunningCompaction(org.apache.accumulo.core.util.compaction.RunningCompaction)
TServerInstance(org.apache.accumulo.core.metadata.TServerInstance)
AbstractServer(org.apache.accumulo.server.AbstractServer)
ServerContext(org.apache.accumulo.server.ServerContext)
TabletClientService(org.apache.accumulo.core.tabletserver.thrift.TabletClientService)
PrepareForTest(org.powermock.core.classloader.annotations.PrepareForTest)
Test(org.junit.Test)
Example 22 with TCredentials
use of org.apache.accumulo.core.securityImpl.thrift.TCredentials in project accumulo by apache.
the class TCredentialsUpdatingInvocationHandlerTest method testAllowedImpersonationForSpecificUsers.
@Test
public void testAllowedImpersonationForSpecificUsers() throws Exception {
final String proxyServer = "proxy";
cc.set(Property.INSTANCE_RPC_SASL_ALLOWED_USER_IMPERSONATION, proxyServer + ":client1,client2");
cc.set(Property.INSTANCE_RPC_SASL_ALLOWED_HOST_IMPERSONATION, "*");
proxy = new TCredentialsUpdatingInvocationHandler<>(new Object(), conf);
TCredentials tcreds = new TCredentials("client1", KerberosToken.class.getName(), ByteBuffer.allocate(0), UUID.randomUUID().toString());
UGIAssumingProcessor.rpcPrincipal.set(proxyServer);
proxy.updateArgs(new Object[] { new Object(), tcreds });
tcreds = new TCredentials("client2", KerberosToken.class.getName(), ByteBuffer.allocate(0), UUID.randomUUID().toString());
proxy.updateArgs(new Object[] { new Object(), tcreds });
}
Also used :
TCredentials(org.apache.accumulo.core.securityImpl.thrift.TCredentials)
KerberosToken(org.apache.accumulo.core.client.security.tokens.KerberosToken)
Test(org.junit.Test)
Example 23 with TCredentials
use of org.apache.accumulo.core.securityImpl.thrift.TCredentials in project accumulo by apache.
the class TCredentialsUpdatingInvocationHandlerTest method testAllowedAnyImpersonationForAnyUser.
@Test
public void testAllowedAnyImpersonationForAnyUser() throws Exception {
final String proxyServer = "proxy";
cc.set(Property.INSTANCE_RPC_SASL_ALLOWED_USER_IMPERSONATION, proxyServer + ":*");
cc.set(Property.INSTANCE_RPC_SASL_ALLOWED_HOST_IMPERSONATION, "*");
proxy = new TCredentialsUpdatingInvocationHandler<>(new Object(), conf);
TCredentials tcreds = new TCredentials("client", KerberosToken.class.getName(), ByteBuffer.allocate(0), UUID.randomUUID().toString());
UGIAssumingProcessor.rpcPrincipal.set(proxyServer);
proxy.updateArgs(new Object[] { new Object(), tcreds });
}
Also used :
TCredentials(org.apache.accumulo.core.securityImpl.thrift.TCredentials)
KerberosToken(org.apache.accumulo.core.client.security.tokens.KerberosToken)
Test(org.junit.Test)
Example 24 with TCredentials
use of org.apache.accumulo.core.securityImpl.thrift.TCredentials in project accumulo by apache.
the class TCredentialsUpdatingInvocationHandlerTest method testCachedTokenClass.
@Test
public void testCachedTokenClass() throws Exception {
final String principal = "root";
ConcurrentHashMap<String, Class<? extends AuthenticationToken>> cache = proxy.getTokenCache();
cache.clear();
TCredentials tcreds = new TCredentials(principal, KerberosToken.CLASS_NAME, ByteBuffer.allocate(0), UUID.randomUUID().toString());
UGIAssumingProcessor.rpcPrincipal.set(principal);
proxy.updateArgs(new Object[] { new Object(), tcreds });
assertEquals(1, cache.size());
assertEquals(KerberosToken.class, cache.get(KerberosToken.CLASS_NAME));
}
Also used :
AuthenticationToken(org.apache.accumulo.core.client.security.tokens.AuthenticationToken)
TCredentials(org.apache.accumulo.core.securityImpl.thrift.TCredentials)
Test(org.junit.Test)
Example 25 with TCredentials
use of org.apache.accumulo.core.securityImpl.thrift.TCredentials in project accumulo by apache.
the class TCredentialsUpdatingInvocationHandlerTest method testAllowedImpersonationFromSpecificHost.
@Test
public void testAllowedImpersonationFromSpecificHost() throws Exception {
final String proxyServer = "proxy", client = "client", host = "host.domain.com";
cc.set(Property.INSTANCE_RPC_SASL_ALLOWED_USER_IMPERSONATION, proxyServer + ":" + client);
cc.set(Property.INSTANCE_RPC_SASL_ALLOWED_HOST_IMPERSONATION, host);
proxy = new TCredentialsUpdatingInvocationHandler<>(new Object(), conf);
TCredentials tcreds = new TCredentials("client", KerberosToken.class.getName(), ByteBuffer.allocate(0), UUID.randomUUID().toString());
UGIAssumingProcessor.rpcPrincipal.set(proxyServer);
TServerUtils.clientAddress.set(host);
proxy.updateArgs(new Object[] { new Object(), tcreds });
}
Also used :
TCredentials(org.apache.accumulo.core.securityImpl.thrift.TCredentials)
KerberosToken(org.apache.accumulo.core.client.security.tokens.KerberosToken)
Test(org.junit.Test)
Aggregations
TCredentials (org.apache.accumulo.core.securityImpl.thrift.TCredentials)27
Test (org.junit.Test)18
KerberosToken (org.apache.accumulo.core.client.security.tokens.KerberosToken)7
ArrayList (java.util.ArrayList)6
TabletClientService (org.apache.accumulo.core.tabletserver.thrift.TabletClientService)6
PasswordToken (org.apache.accumulo.core.client.security.tokens.PasswordToken)5
AccumuloConfiguration (org.apache.accumulo.core.conf.AccumuloConfiguration)5
TServerInstance (org.apache.accumulo.core.metadata.TServerInstance)5
TCompactionQueueSummary (org.apache.accumulo.core.tabletserver.thrift.TCompactionQueueSummary)5
Client (org.apache.accumulo.core.tabletserver.thrift.TabletClientService.Client)5
TInfo (org.apache.accumulo.core.trace.thrift.TInfo)5
HostAndPort (org.apache.accumulo.core.util.HostAndPort)5
AbstractServer (org.apache.accumulo.server.AbstractServer)5
ServerContext (org.apache.accumulo.server.ServerContext)5
LiveTServerSet (org.apache.accumulo.server.manager.LiveTServerSet)5
ServerAddress (org.apache.accumulo.server.rpc.ServerAddress)5
AuditedSecurityOperation (org.apache.accumulo.server.security.AuditedSecurityOperation)5
HashSet (java.util.HashSet)4
TreeSet (java.util.TreeSet)4
Credentials (org.apache.accumulo.core.clientImpl.Credentials)4
