Examples with MiniKdc org.apache.hadoop.minikdc.MiniKdc used on opensource projects

Example 1 with MiniKdc

use of org.apache.hadoop.minikdc.MiniKdc in project hadoop by apache.

the class TestRMWebServicesHttpStaticUserPermissions method setUp.

@BeforeClass
public static void setUp() {
    try {
        testMiniKDC = new MiniKdc(MiniKdc.createConf(), testRootDir);
        setupKDC();
        setupAndStartRM();
    } catch (Exception e) {
        fail("Couldn't create MiniKDC");
    }
}

Example 2 with MiniKdc

use of org.apache.hadoop.minikdc.MiniKdc in project hadoop by apache.

the class TestRMWebServicesDelegationTokenAuthentication method setUp.

@BeforeClass
public static void setUp() {
    try {
        testMiniKDC = new MiniKdc(MiniKdc.createConf(), testRootDir);
        setupKDC();
        setupAndStartRM();
    } catch (Exception e) {
        assertTrue("Couldn't create MiniKDC", false);
    }
}

Example 3 with MiniKdc

use of org.apache.hadoop.minikdc.MiniKdc in project hadoop by apache.

the class TestRMWebServicesDelegationTokens method setupKDC.

@BeforeClass
public static void setupKDC() throws Exception {
    testRootDir = new File("target", TestRMWebServicesDelegationTokens.class.getName() + "-root");
    testMiniKDC = new MiniKdc(MiniKdc.createConf(), testRootDir);
    testMiniKDC.start();
    testMiniKDC.createPrincipal(httpSpnegoKeytabFile, "HTTP/localhost", "client", "client2", "client3");
}

Example 4 with MiniKdc

use of org.apache.hadoop.minikdc.MiniKdc in project hadoop by apache.

the class AbstractSecureRegistryTest method setupKDCAndPrincipals.

/**
   * Sets up the KDC and a set of principals in the JAAS file
   *
   * @throws Exception
   */
public static void setupKDCAndPrincipals() throws Exception {
    // set up the KDC
    File target = new File(System.getProperty("test.dir", "target"));
    kdcWorkDir = new File(target, "kdc");
    kdcWorkDir.mkdirs();
    if (!kdcWorkDir.mkdirs()) {
        assertTrue(kdcWorkDir.isDirectory());
    }
    kdcConf = MiniKdc.createConf();
    kdcConf.setProperty(MiniKdc.DEBUG, "true");
    kdc = new MiniKdc(kdcConf, kdcWorkDir);
    kdc.start();
    keytab_zk = createKeytab(ZOOKEEPER, "zookeeper.keytab");
    keytab_alice = createKeytab(ALICE, "alice.keytab");
    keytab_bob = createKeytab(BOB, "bob.keytab");
    zkServerPrincipal = Shell.WINDOWS ? ZOOKEEPER_1270001 : ZOOKEEPER_LOCALHOST;
    StringBuilder jaas = new StringBuilder(1024);
    jaas.append(registrySecurity.createJAASEntry(ZOOKEEPER_CLIENT_CONTEXT, ZOOKEEPER, keytab_zk));
    jaas.append(registrySecurity.createJAASEntry(ZOOKEEPER_SERVER_CONTEXT, zkServerPrincipal, keytab_zk));
    jaas.append(registrySecurity.createJAASEntry(ALICE_CLIENT_CONTEXT, ALICE_LOCALHOST, keytab_alice));
    jaas.append(registrySecurity.createJAASEntry(BOB_CLIENT_CONTEXT, BOB_LOCALHOST, keytab_bob));
    jaasFile = new File(kdcWorkDir, "jaas.txt");
    FileUtils.write(jaasFile, jaas.toString());
    LOG.info("\n" + jaas);
    RegistrySecurity.bindJVMtoJAASFile(jaasFile);
}

Example 5 with MiniKdc

use of org.apache.hadoop.minikdc.MiniKdc in project hadoop by apache.

the class TestTimelineAuthenticationFilter method setup.

@BeforeClass
public static void setup() {
    try {
        testMiniKDC = new MiniKdc(MiniKdc.createConf(), testRootDir);
        testMiniKDC.start();
        testMiniKDC.createPrincipal(httpSpnegoKeytabFile, HTTP_USER + "/localhost");
    } catch (Exception e) {
        assertTrue("Couldn't setup MiniKDC", false);
    }
    try {
        testTimelineServer = new ApplicationHistoryServer();
        conf = new Configuration(false);
        conf.setStrings(TimelineAuthenticationFilterInitializer.PREFIX + "type", "kerberos");
        conf.set(TimelineAuthenticationFilterInitializer.PREFIX + KerberosAuthenticationHandler.PRINCIPAL, httpSpnegoPrincipal);
        conf.set(TimelineAuthenticationFilterInitializer.PREFIX + KerberosAuthenticationHandler.KEYTAB, httpSpnegoKeytabFile.getAbsolutePath());
        conf.set(CommonConfigurationKeysPublic.HADOOP_SECURITY_AUTHENTICATION, "kerberos");
        conf.set(YarnConfiguration.TIMELINE_SERVICE_PRINCIPAL, httpSpnegoPrincipal);
        conf.set(YarnConfiguration.TIMELINE_SERVICE_KEYTAB, httpSpnegoKeytabFile.getAbsolutePath());
        conf.setBoolean(YarnConfiguration.TIMELINE_SERVICE_ENABLED, true);
        conf.setClass(YarnConfiguration.TIMELINE_SERVICE_STORE, MemoryTimelineStore.class, TimelineStore.class);
        conf.set(YarnConfiguration.TIMELINE_SERVICE_ADDRESS, "localhost:10200");
        conf.set(YarnConfiguration.TIMELINE_SERVICE_WEBAPP_ADDRESS, "localhost:8188");
        conf.set(YarnConfiguration.TIMELINE_SERVICE_WEBAPP_HTTPS_ADDRESS, "localhost:8190");
        conf.set("hadoop.proxyuser.HTTP.hosts", "*");
        conf.set("hadoop.proxyuser.HTTP.users", FOO_USER);
        conf.setInt(YarnConfiguration.TIMELINE_SERVICE_CLIENT_MAX_RETRIES, 1);
        if (withSsl) {
            conf.set(YarnConfiguration.YARN_HTTP_POLICY_KEY, HttpConfig.Policy.HTTPS_ONLY.name());
            File base = new File(BASEDIR);
            FileUtil.fullyDelete(base);
            base.mkdirs();
            keystoresDir = new File(BASEDIR).getAbsolutePath();
            sslConfDir = KeyStoreTestUtil.getClasspathDir(TestTimelineAuthenticationFilter.class);
            KeyStoreTestUtil.setupSSLConfig(keystoresDir, sslConfDir, conf, false);
        }
        UserGroupInformation.setConfiguration(conf);
        testTimelineServer.init(conf);
        testTimelineServer.start();
    } catch (Exception e) {
        assertTrue("Couldn't setup TimelineServer", false);
    }
}