-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/50791/
-----------------------------------------------------------
(Updated Aug. 4, 2016, 6:48 p.m.)
Review request for Ambari, Alejandro Fernandez, Gautam Borad, Jayush Luniya,
Robert Levas, and Velmurugan Periasamy.
Changes
-------
Updated review with fix for the issue itself and dropped changes done
common-service version.
Bugs: AMBARI-18019
https://issues.apache.org/jira/browse/AMBARI-18019
Repository: ambari
Description
-------
In-order to support AMBARI-17902 changes for ranger-atlas plugin, trying to
accommodate below code in common-services/ATLAS/0.7.0.2.5/kerberos.json.
{
"name": "/ATLAS/ATLAS_SERVER/atlas",
"principal": {
"configuration":
"ranger-atlas-audit/xasecure.audit.jaas.Client.option.principal"
},
"keytab": {
"configuration":
"ranger-atlas-audit/xasecure.audit.jaas.Client.option.keyTab"
}
}
However these configs are not being available at ranger-atlas-audit.xml
This occurs because the Kerberos Descriptors does not allow using the same
identity name more than once.
After AMBARI-17993 fix this is made possible by using reference tag.
Changes include:
1) updating kerberos.json
2) moving ranger related configs file from
/stacks/HDP/2.5/services/ATLAS/configuration to
/common-services/ATLAS/0.7.0.2.5/configuration as common service version
0.7.0.2.5 is maintained.
Diffs (updated)
-----
ambari-server/src/main/resources/common-services/ATLAS/0.7.0.2.5/kerberos.json
2be4b7d
ambari-server/src/main/resources/common-services/RANGER/0.4.0/package/scripts/params.py
43c767d
Diff: https://reviews.apache.org/r/50791/diff/
Testing
-------
Tested Atlas installation in secure mode with and without Ranger
Thanks,
Mugdha Varadkar
