public static class HadoopThriftAuthBridge.Server extends Object
Modifier and Type | Class and Description |
---|---|
static class |
HadoopThriftAuthBridge.Server.ServerMode |
protected class |
HadoopThriftAuthBridge.Server.TUGIAssumingProcessor
Processor that pulls the SaslServer object out of the transport, and
assumes the remote user's UGI before calling through to the original
processor.
|
Modifier and Type | Field and Description |
---|---|
protected org.apache.hadoop.security.UserGroupInformation |
clientValidationUGI |
protected org.apache.hadoop.security.UserGroupInformation |
realUgi |
protected DelegationTokenSecretManager |
secretManager |
Modifier | Constructor and Description |
---|---|
|
Server() |
protected |
Server(String keytabFile,
String principalConf,
String clientConf)
Create a server with a kerberos keytab/principal.
|
Modifier and Type | Method and Description |
---|---|
org.apache.thrift.transport.TSaslServerTransport.Factory |
createSaslServerTransportFactory(Map<String,String> saslProps)
Create a TSaslServerTransport.Factory that, upon connection of a client
socket, negotiates a Kerberized SASL transport.
|
org.apache.thrift.transport.TTransportFactory |
createTransportFactory(Map<String,String> saslProps)
Create a TTransportFactory that, upon connection of a client socket,
negotiates a Kerberized SASL transport.
|
InetAddress |
getRemoteAddress() |
String |
getRemoteUser() |
String |
getUserAuthMechanism() |
void |
setSecretManager(DelegationTokenSecretManager secretManager) |
org.apache.thrift.TProcessor |
wrapNonAssumingProcessor(org.apache.thrift.TProcessor processor)
Wrap a TProcessor to capture the client information like connecting userid, ip etc
|
org.apache.thrift.TProcessor |
wrapProcessor(org.apache.thrift.TProcessor processor)
Wrap a TProcessor in such a way that, before processing any RPC, it
assumes the UserGroupInformation of the user authenticated by
the SASL transport.
|
org.apache.thrift.transport.TTransportFactory |
wrapTransportFactory(org.apache.thrift.transport.TTransportFactory transFactory)
Wrap a TTransportFactory in such a way that, before processing any RPC, it
assumes the UserGroupInformation of the user authenticated by
the SASL transport.
|
protected final org.apache.hadoop.security.UserGroupInformation realUgi
protected final org.apache.hadoop.security.UserGroupInformation clientValidationUGI
protected DelegationTokenSecretManager secretManager
public Server() throws org.apache.thrift.transport.TTransportException
org.apache.thrift.transport.TTransportException
public void setSecretManager(DelegationTokenSecretManager secretManager)
public org.apache.thrift.transport.TTransportFactory createTransportFactory(Map<String,String> saslProps) throws org.apache.thrift.transport.TTransportException
saslProps
- Map of SASL propertiesorg.apache.thrift.transport.TTransportException
public org.apache.thrift.transport.TSaslServerTransport.Factory createSaslServerTransportFactory(Map<String,String> saslProps) throws org.apache.thrift.transport.TTransportException
saslProps
- Map of SASL propertiesorg.apache.thrift.transport.TTransportException
public org.apache.thrift.transport.TTransportFactory wrapTransportFactory(org.apache.thrift.transport.TTransportFactory transFactory)
public org.apache.thrift.TProcessor wrapProcessor(org.apache.thrift.TProcessor processor)
public org.apache.thrift.TProcessor wrapNonAssumingProcessor(org.apache.thrift.TProcessor processor)
public InetAddress getRemoteAddress()
public String getRemoteUser()
public String getUserAuthMechanism()
Copyright © 2022 The Apache Software Foundation. All rights reserved.