Github user Ethanlm commented on the issue:
https://github.com/apache/storm/pull/2502
Yes sure. My storm.yaml is as follows:
```
storm.zookeeper.servers:
- "persistmist.corp.ne1.yahoo.com"
nimbus.seeds: ["persistmist.corp.ne1.yahoo.com", "localhost"]
storm.local.dir: "/tmp/apache-storm-2.0.0-SNAPSHOT/storm-local"
supervisor.run.worker.as.user: true
supervisor.worker.launcher: /etc/storm/worker-launcher
nimbus.authorizer:
"org.apache.storm.security.auth.authorizer.SimpleACLAuthorizer"
nimbus.supervisor.users:
- "mapredqa"
nimbus.admins:
- "mapredqa"
- "ethan"
nimbus.users:
- "mapredqa"
- "ethan"
ui.users:
- "mapredqa"
- "ethan"
logs.users:
- "mapredqa"
- "ethan"
storm.thrift.transport:
"org.apache.storm.security.auth.kerberos.KerberosSaslTransportPlugin"
java.security.auth.login.config: "/jaas/storm_jaas.conf"
nimbus.childopts: "-Xmx1024m
-Djava.security.auth.login.config=/jaas/storm_jaas.conf " # "
-Dsun.security.krb5.debug=true"
ui.childopts: "-Xmx768m
-Djava.security.auth.login.config=/jaas/storm_jaas.conf" #
-Dsun.security.krb5.debug=true"
supervisor.childopts: "-Xmx256m
-Djava.security.auth.login.config=/jaas/storm_jaas.conf"
storm.principal.tolocal:
"org.apache.storm.security.auth.KerberosPrincipalToLocal"
storm.zookeeper.superACL: "sasl:mapredqa"
storm.blobstore.acl.validation.enabled: false
ui.header.buffer.bytes: 65536
ui.filter:
"org.apache.hadoop.security.authentication.server.AuthenticationFilter"
ui.filter.params:
"type": "kerberos"
"kerberos.principal": "HTTP/persistmist.corp.ne1.yahoo.com"
"kerberos.keytab": "/keytabs/HTTP.keytab"
"kerberos.name.rules": "DEFAULT"
scheduler.display.resource: true
storm.scheduler:
"org.apache.storm.scheduler.resource.ResourceAwareScheduler"
```
---
