Hi! I need some help with a simple "hello world" Ranger Hive Plugin installed from sources. I am having connection problems from the Hive plugin to the Ranger Admin server, the plugin is unable to get the policies, however the plugin is able to send the audit messages to the Solr correctly (which is installed on the same machine as the Ranger Admin Server). The error I am getting is not very clear:
2022-04-15T12:42:35,796 DEBUG [main] classloader.RangerPluginClassLoader: <== RangerPluginClassLoader.findClass(org.apache.ranger.plugin.model.RangerServiceDef$RangerEnumElementDef): class org.apache.ranger.plugin.model.RangerServiceDef$RangerEnumElementDef 2022-04-15T12:42:35,747 ERROR [main] util.RangerRolesProvider: RangerRolesProvider(serviceName=hivedev): failed to refresh roles. Will continue to use last known version of roles (lastKnowRoleVersion= -1 java.lang.IllegalArgumentException: Schema specific part is opaque. at org.glassfish.jersey.uri.internal.JerseyUriBuilder.checkSsp(JerseyUriBuilder.java:714) ~[jersey-common-2.25.1.jar:?] at org.glassfish.jersey.uri.internal.JerseyUriBuilder.queryParam(JerseyUriBuilder.java:551) ~[jersey-common-2.25.1.jar:?] at org.glassfish.jersey.uri.internal.JerseyUriBuilder.queryParam(JerseyUriBuilder.java:72) ~[jersey-common-2.25.1.jar:?] at com.sun.jersey.api.client.WebResource.queryParam(WebResource.java:442) ~[jersey-client-1.19.jar:1.19] at org.apache.ranger.plugin.util.RangerRESTClient.setQueryParams(RangerRESTClient.java:701) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.plugin.util.RangerRESTClient.get(RangerRESTClient.java:474) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.admin.client.RangerAdminRESTClient.getRangerRolesDownloadResponse(RangerAdminRESTClient.java:1340) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.admin.client.RangerAdminRESTClient.getRolesIfUpdatedWithCred(RangerAdminRESTClient.java:1202) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.admin.client.RangerAdminRESTClient.getRolesIfUpdated(RangerAdminRESTClient.java:167) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.plugin.util.RangerRolesProvider.loadUserGroupRolesFromAdmin(RangerRolesProvider.java:183) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.plugin.util.RangerRolesProvider.loadUserGroupRoles(RangerRolesProvider.java:123) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.plugin.util.PolicyRefresher.loadRoles(PolicyRefresher.java:495) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.plugin.util.PolicyRefresher.startRefresher(PolicyRefresher.java:144) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.plugin.service.RangerBasePlugin.init(RangerBasePlugin.java:229) ~[ranger-plugins-common-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.authorization.hive.authorizer.RangerHivePlugin.init(RangerHiveAuthorizer.java:3249) ~[ranger-hive-plugin-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.authorization.hive.authorizer.RangerHiveAuthorizer.<init>(RangerHiveAuthorizer.java:176) ~[ranger-hive-plugin-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.authorization.hive.authorizer.RangerHiveAuthorizerFactory.createHiveAuthorizer(RangerHiveAuthorizerFactory.java:37) ~[ranger-hive-plugin-shim-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.ranger.authorization.hive.authorizer.RangerHiveAuthorizerFactory.createHiveAuthorizer(RangerHiveAuthorizerFactory.java:101) ~[ranger-hive-plugin-shim-3.0.0-SNAPSHOT.jar:3.0.0-SNAPSHOT] at org.apache.hadoop.hive.ql.session.SessionState.setupAuth(SessionState.java:922) ~[hive-exec-3.1.2.jar:3.1.2] at org.apache.hadoop.hive.ql.session.SessionState.applyAuthorizationPolicy(SessionState.java:1893) ~[hive-exec-3.1.2.jar:3.1.2] at org.apache.hive.service.cli.CLIService.applyAuthorizationConfigPolicy(CLIService.java:131) ~[hive-service-3.1.2.jar:3.1.2] at org.apache.hive.service.cli.CLIService.init(CLIService.java:115) ~[hive-service-3.1.2.jar:3.1.2] at org.apache.hive.service.CompositeService.init(CompositeService.java:59) ~[hive-service-3.1.2.jar:3.1.2] at org.apache.hive.service.server.HiveServer2.init(HiveServer2.java:230) ~[hive-service-3.1.2.jar:3.1.2] at org.apache.hive.service.server.HiveServer2.startHiveServer2(HiveServer2.java:1036) ~[hive-service-3.1.2.jar:3.1.2] at org.apache.hive.service.server.HiveServer2.access$1600(HiveServer2.java:140) ~[hive-service-3.1.2.jar:3.1.2] at org.apache.hive.service.server.HiveServer2$StartOptionExecutor.execute(HiveServer2.java:1305) ~[hive-service-3.1.2.jar:3.1.2] at org.apache.hive.service.server.HiveServer2.main(HiveServer2.java:1149) ~[hive-service-3.1.2.jar:3.1.2] at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) ~[?:1.8.0_322] at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) ~[?:1.8.0_322] at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) ~[?:1.8.0_322] at java.lang.reflect.Method.invoke(Method.java:498) ~[?:1.8.0_322] at org.apache.hadoop.util.RunJar.run(RunJar.java:323) ~[hadoop-common-3.2.1.jar:?] at org.apache.hadoop.util.RunJar.main(RunJar.java:236) ~[hadoop-common-3.2.1.jar:?] I'm not quite sure how the plugin is able to authenticate against the Ranger Admin Server, I don't see any configuration about the basic authentication (admin/admin by default when I use the REST API). Any help? Many thanks! -- Javi Roman Twitter: @javiromanrh GitHub: github.com/javiroman Linkedin: es.linkedin.com/in/javiroman Big Data Blog: dataintensive.info