Google Git
Sign in
apache / hbase-site / 8b92bda3fb92938b109d412201b37d8f2d841252 / . / testapidocs / src-html / org / apache / hadoop / hbase / TestHBaseConfiguration.html
blob: c01caac2504c91d0e528098951e75ee7526b3544 [file] [log] [blame]
<!DOCTYPE HTML>
<html lang="en">
<head>
<!-- Generated by javadoc (17) -->
<title>Source code</title>
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="description" content="source: package: org.apache.hadoop.hbase, class: TestHBaseConfiguration">
<meta name="generator" content="javadoc/SourceToHTMLConverter">
<link rel="stylesheet" type="text/css" href="../../../../../stylesheet.css" title="Style">
</head>
<body class="source-page">
<main role="main">
<div class="source-container">
<pre><span class="source-line-no">001</span><span id="line-1">/*</span>
<span class="source-line-no">002</span><span id="line-2"> * Licensed to the Apache Software Foundation (ASF) under one</span>
<span class="source-line-no">003</span><span id="line-3"> * or more contributor license agreements. See the NOTICE file</span>
<span class="source-line-no">004</span><span id="line-4"> * distributed with this work for additional information</span>
<span class="source-line-no">005</span><span id="line-5"> * regarding copyright ownership. The ASF licenses this file</span>
<span class="source-line-no">006</span><span id="line-6"> * to you under the Apache License, Version 2.0 (the</span>
<span class="source-line-no">007</span><span id="line-7"> * "License"); you may not use this file except in compliance</span>
<span class="source-line-no">008</span><span id="line-8"> * with the License. You may obtain a copy of the License at</span>
<span class="source-line-no">009</span><span id="line-9"> *</span>
<span class="source-line-no">010</span><span id="line-10"> * http://www.apache.org/licenses/LICENSE-2.0</span>
<span class="source-line-no">011</span><span id="line-11"> *</span>
<span class="source-line-no">012</span><span id="line-12"> * Unless required by applicable law or agreed to in writing, software</span>
<span class="source-line-no">013</span><span id="line-13"> * distributed under the License is distributed on an "AS IS" BASIS,</span>
<span class="source-line-no">014</span><span id="line-14"> * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.</span>
<span class="source-line-no">015</span><span id="line-15"> * See the License for the specific language governing permissions and</span>
<span class="source-line-no">016</span><span id="line-16"> * limitations under the License.</span>
<span class="source-line-no">017</span><span id="line-17"> */</span>
<span class="source-line-no">018</span><span id="line-18">package org.apache.hadoop.hbase;</span>
<span class="source-line-no">019</span><span id="line-19"></span>
<span class="source-line-no">020</span><span id="line-20">import static org.junit.Assert.assertEquals;</span>
<span class="source-line-no">021</span><span id="line-21">import static org.junit.Assert.assertNull;</span>
<span class="source-line-no">022</span><span id="line-22">import static org.junit.Assert.fail;</span>
<span class="source-line-no">023</span><span id="line-23"></span>
<span class="source-line-no">024</span><span id="line-24">import java.io.File;</span>
<span class="source-line-no">025</span><span id="line-25">import java.io.IOException;</span>
<span class="source-line-no">026</span><span id="line-26">import java.lang.reflect.InvocationTargetException;</span>
<span class="source-line-no">027</span><span id="line-27">import java.lang.reflect.Method;</span>
<span class="source-line-no">028</span><span id="line-28">import java.util.List;</span>
<span class="source-line-no">029</span><span id="line-29">import org.apache.hadoop.conf.Configuration;</span>
<span class="source-line-no">030</span><span id="line-30">import org.apache.hadoop.hbase.security.User;</span>
<span class="source-line-no">031</span><span id="line-31">import org.apache.hadoop.hbase.testclassification.MiscTests;</span>
<span class="source-line-no">032</span><span id="line-32">import org.apache.hadoop.hbase.testclassification.SmallTests;</span>
<span class="source-line-no">033</span><span id="line-33">import org.junit.AfterClass;</span>
<span class="source-line-no">034</span><span id="line-34">import org.junit.Assert;</span>
<span class="source-line-no">035</span><span id="line-35">import org.junit.ClassRule;</span>
<span class="source-line-no">036</span><span id="line-36">import org.junit.Test;</span>
<span class="source-line-no">037</span><span id="line-37">import org.junit.experimental.categories.Category;</span>
<span class="source-line-no">038</span><span id="line-38">import org.slf4j.Logger;</span>
<span class="source-line-no">039</span><span id="line-39">import org.slf4j.LoggerFactory;</span>
<span class="source-line-no">040</span><span id="line-40"></span>
<span class="source-line-no">041</span><span id="line-41">import org.apache.hbase.thirdparty.com.google.common.collect.ImmutableMap;</span>
<span class="source-line-no">042</span><span id="line-42"></span>
<span class="source-line-no">043</span><span id="line-43">@Category({ MiscTests.class, SmallTests.class })</span>
<span class="source-line-no">044</span><span id="line-44">public class TestHBaseConfiguration {</span>
<span class="source-line-no">045</span><span id="line-45"> @ClassRule</span>
<span class="source-line-no">046</span><span id="line-46"> public static final HBaseClassTestRule CLASS_RULE =</span>
<span class="source-line-no">047</span><span id="line-47"> HBaseClassTestRule.forClass(TestHBaseConfiguration.class);</span>
<span class="source-line-no">048</span><span id="line-48"></span>
<span class="source-line-no">049</span><span id="line-49"> private static final Logger LOG = LoggerFactory.getLogger(TestHBaseConfiguration.class);</span>
<span class="source-line-no">050</span><span id="line-50"></span>
<span class="source-line-no">051</span><span id="line-51"> private static HBaseCommonTestingUtil UTIL = new HBaseCommonTestingUtil();</span>
<span class="source-line-no">052</span><span id="line-52"></span>
<span class="source-line-no">053</span><span id="line-53"> @AfterClass</span>
<span class="source-line-no">054</span><span id="line-54"> public static void tearDown() throws IOException {</span>
<span class="source-line-no">055</span><span id="line-55"> UTIL.cleanupTestDir();</span>
<span class="source-line-no">056</span><span id="line-56"> }</span>
<span class="source-line-no">057</span><span id="line-57"></span>
<span class="source-line-no">058</span><span id="line-58"> @Test</span>
<span class="source-line-no">059</span><span id="line-59"> public void testSubset() {</span>
<span class="source-line-no">060</span><span id="line-60"> Configuration conf = HBaseConfiguration.create();</span>
<span class="source-line-no">061</span><span id="line-61"> // subset is used in TableMapReduceUtil#initCredentials to support different security</span>
<span class="source-line-no">062</span><span id="line-62"> // configurations between source and destination clusters, so we'll use that as an example</span>
<span class="source-line-no">063</span><span id="line-63"> String prefix = "hbase.mapred.output.";</span>
<span class="source-line-no">064</span><span id="line-64"> conf.set("hbase.security.authentication", "kerberos");</span>
<span class="source-line-no">065</span><span id="line-65"> conf.set("hbase.regionserver.kerberos.principal", "hbasesource");</span>
<span class="source-line-no">066</span><span id="line-66"> HBaseConfiguration.setWithPrefix(conf, prefix, ImmutableMap</span>
<span class="source-line-no">067</span><span id="line-67"> .of("hbase.regionserver.kerberos.principal", "hbasedest", "", "shouldbemissing").entrySet());</span>
<span class="source-line-no">068</span><span id="line-68"></span>
<span class="source-line-no">069</span><span id="line-69"> Configuration subsetConf = HBaseConfiguration.subset(conf, prefix);</span>
<span class="source-line-no">070</span><span id="line-70"> assertNull(subsetConf.get(prefix + "hbase.regionserver.kerberos.principal"));</span>
<span class="source-line-no">071</span><span id="line-71"> assertEquals("hbasedest", subsetConf.get("hbase.regionserver.kerberos.principal"));</span>
<span class="source-line-no">072</span><span id="line-72"> assertNull(subsetConf.get("hbase.security.authentication"));</span>
<span class="source-line-no">073</span><span id="line-73"> assertNull(subsetConf.get(""));</span>
<span class="source-line-no">074</span><span id="line-74"></span>
<span class="source-line-no">075</span><span id="line-75"> Configuration mergedConf = HBaseConfiguration.create(conf);</span>
<span class="source-line-no">076</span><span id="line-76"> HBaseConfiguration.merge(mergedConf, subsetConf);</span>
<span class="source-line-no">077</span><span id="line-77"></span>
<span class="source-line-no">078</span><span id="line-78"> assertEquals("hbasedest", mergedConf.get("hbase.regionserver.kerberos.principal"));</span>
<span class="source-line-no">079</span><span id="line-79"> assertEquals("kerberos", mergedConf.get("hbase.security.authentication"));</span>
<span class="source-line-no">080</span><span id="line-80"> assertEquals("shouldbemissing", mergedConf.get(prefix));</span>
<span class="source-line-no">081</span><span id="line-81"> }</span>
<span class="source-line-no">082</span><span id="line-82"></span>
<span class="source-line-no">083</span><span id="line-83"> @Test</span>
<span class="source-line-no">084</span><span id="line-84"> public void testGetPassword() throws Exception {</span>
<span class="source-line-no">085</span><span id="line-85"> Configuration conf = HBaseConfiguration.create();</span>
<span class="source-line-no">086</span><span id="line-86"> conf.set(ReflectiveCredentialProviderClient.CREDENTIAL_PROVIDER_PATH, "jceks://file"</span>
<span class="source-line-no">087</span><span id="line-87"> + new File(UTIL.getDataTestDir().toUri().getPath(), "foo.jks").getCanonicalPath());</span>
<span class="source-line-no">088</span><span id="line-88"> ReflectiveCredentialProviderClient client = new ReflectiveCredentialProviderClient();</span>
<span class="source-line-no">089</span><span id="line-89"> if (client.isHadoopCredentialProviderAvailable()) {</span>
<span class="source-line-no">090</span><span id="line-90"> char[] keyPass = { 'k', 'e', 'y', 'p', 'a', 's', 's' };</span>
<span class="source-line-no">091</span><span id="line-91"> char[] storePass = { 's', 't', 'o', 'r', 'e', 'p', 'a', 's', 's' };</span>
<span class="source-line-no">092</span><span id="line-92"> client.createEntry(conf, "ssl.keypass.alias", keyPass);</span>
<span class="source-line-no">093</span><span id="line-93"> client.createEntry(conf, "ssl.storepass.alias", storePass);</span>
<span class="source-line-no">094</span><span id="line-94"></span>
<span class="source-line-no">095</span><span id="line-95"> String keypass = HBaseConfiguration.getPassword(conf, "ssl.keypass.alias", null);</span>
<span class="source-line-no">096</span><span id="line-96"> assertEquals(keypass, new String(keyPass));</span>
<span class="source-line-no">097</span><span id="line-97"></span>
<span class="source-line-no">098</span><span id="line-98"> String storepass = HBaseConfiguration.getPassword(conf, "ssl.storepass.alias", null);</span>
<span class="source-line-no">099</span><span id="line-99"> assertEquals(storepass, new String(storePass));</span>
<span class="source-line-no">100</span><span id="line-100"> }</span>
<span class="source-line-no">101</span><span id="line-101"> }</span>
<span class="source-line-no">102</span><span id="line-102"></span>
<span class="source-line-no">103</span><span id="line-103"> @Test</span>
<span class="source-line-no">104</span><span id="line-104"> public void testSecurityConfCaseInsensitive() {</span>
<span class="source-line-no">105</span><span id="line-105"> Configuration conf = HBaseConfiguration.create();</span>
<span class="source-line-no">106</span><span id="line-106"> conf.set("hbase.security.authentication", "kerberos");</span>
<span class="source-line-no">107</span><span id="line-107"> Assert.assertTrue(User.isHBaseSecurityEnabled(conf));</span>
<span class="source-line-no">108</span><span id="line-108"></span>
<span class="source-line-no">109</span><span id="line-109"> conf.set("hbase.security.authentication", "KERBEROS");</span>
<span class="source-line-no">110</span><span id="line-110"> Assert.assertTrue(User.isHBaseSecurityEnabled(conf));</span>
<span class="source-line-no">111</span><span id="line-111"></span>
<span class="source-line-no">112</span><span id="line-112"> conf.set("hbase.security.authentication", "KERBeros");</span>
<span class="source-line-no">113</span><span id="line-113"> Assert.assertTrue(User.isHBaseSecurityEnabled(conf));</span>
<span class="source-line-no">114</span><span id="line-114"> }</span>
<span class="source-line-no">115</span><span id="line-115"></span>
<span class="source-line-no">116</span><span id="line-116"> @Test</span>
<span class="source-line-no">117</span><span id="line-117"> public void testGetConfigOfShortcircuitRead() throws Exception {</span>
<span class="source-line-no">118</span><span id="line-118"> Configuration conf = HBaseConfiguration.create();</span>
<span class="source-line-no">119</span><span id="line-119"> Configuration.addDefaultResource("hdfs-scr-disabled.xml");</span>
<span class="source-line-no">120</span><span id="line-120"> assertEquals("hdfs-scr-disabled.xml",</span>
<span class="source-line-no">121</span><span id="line-121"> conf.getPropertySources("dfs.client.read.shortcircuit")[0]);</span>
<span class="source-line-no">122</span><span id="line-122"> assertEquals("false", conf.get("dfs.client.read.shortcircuit"));</span>
<span class="source-line-no">123</span><span id="line-123"> assertNull(conf.get("dfs.domain.socket.path"));</span>
<span class="source-line-no">124</span><span id="line-124"> Configuration.addDefaultResource("hdfs-scr-enabled.xml");</span>
<span class="source-line-no">125</span><span id="line-125"> assertEquals("hdfs-scr-enabled.xml",</span>
<span class="source-line-no">126</span><span id="line-126"> conf.getPropertySources("dfs.client.read.shortcircuit")[0]);</span>
<span class="source-line-no">127</span><span id="line-127"> assertEquals("hdfs-scr-enabled.xml", conf.getPropertySources("dfs.domain.socket.path")[0]);</span>
<span class="source-line-no">128</span><span id="line-128"> assertEquals("true", conf.get("dfs.client.read.shortcircuit"));</span>
<span class="source-line-no">129</span><span id="line-129"> assertEquals("/var/lib/hadoop-hdfs/dn_socket", conf.get("dfs.domain.socket.path"));</span>
<span class="source-line-no">130</span><span id="line-130"> }</span>
<span class="source-line-no">131</span><span id="line-131"></span>
<span class="source-line-no">132</span><span id="line-132"> @Test</span>
<span class="source-line-no">133</span><span id="line-133"> public void testDeprecatedConfigurations() {</span>
<span class="source-line-no">134</span><span id="line-134"> // Configuration.addDeprecations before create Configuration object</span>
<span class="source-line-no">135</span><span id="line-135"> Configuration.addDeprecations(new Configuration.DeprecationDelta[] {</span>
<span class="source-line-no">136</span><span id="line-136"> new Configuration.DeprecationDelta("hbase.deprecated.conf", "hbase.new.conf"),</span>
<span class="source-line-no">137</span><span id="line-137"> new Configuration.DeprecationDelta("hbase.deprecated.conf2", "hbase.new.conf2") });</span>
<span class="source-line-no">138</span><span id="line-138"> Configuration conf = HBaseConfiguration.create();</span>
<span class="source-line-no">139</span><span id="line-139"> conf.addResource("hbase-deprecated-conf.xml");</span>
<span class="source-line-no">140</span><span id="line-140"> assertEquals("1000", conf.get("hbase.new.conf"));</span>
<span class="source-line-no">141</span><span id="line-141"> assertEquals("1000", conf.get("hbase.new.conf2"));</span>
<span class="source-line-no">142</span><span id="line-142"> }</span>
<span class="source-line-no">143</span><span id="line-143"></span>
<span class="source-line-no">144</span><span id="line-144"> private static class ReflectiveCredentialProviderClient {</span>
<span class="source-line-no">145</span><span id="line-145"> public static final String HADOOP_CRED_PROVIDER_FACTORY_CLASS_NAME =</span>
<span class="source-line-no">146</span><span id="line-146"> "org.apache.hadoop.security.alias.JavaKeyStoreProvider$Factory";</span>
<span class="source-line-no">147</span><span id="line-147"> public static final String HADOOP_CRED_PROVIDER_FACTORY_GET_PROVIDERS_METHOD_NAME =</span>
<span class="source-line-no">148</span><span id="line-148"> "getProviders";</span>
<span class="source-line-no">149</span><span id="line-149"></span>
<span class="source-line-no">150</span><span id="line-150"> public static final String HADOOP_CRED_PROVIDER_CLASS_NAME =</span>
<span class="source-line-no">151</span><span id="line-151"> "org.apache.hadoop.security.alias.CredentialProvider";</span>
<span class="source-line-no">152</span><span id="line-152"> public static final String HADOOP_CRED_PROVIDER_GET_CREDENTIAL_ENTRY_METHOD_NAME =</span>
<span class="source-line-no">153</span><span id="line-153"> "getCredentialEntry";</span>
<span class="source-line-no">154</span><span id="line-154"> public static final String HADOOP_CRED_PROVIDER_GET_ALIASES_METHOD_NAME = "getAliases";</span>
<span class="source-line-no">155</span><span id="line-155"> public static final String HADOOP_CRED_PROVIDER_CREATE_CREDENTIAL_ENTRY_METHOD_NAME =</span>
<span class="source-line-no">156</span><span id="line-156"> "createCredentialEntry";</span>
<span class="source-line-no">157</span><span id="line-157"> public static final String HADOOP_CRED_PROVIDER_FLUSH_METHOD_NAME = "flush";</span>
<span class="source-line-no">158</span><span id="line-158"></span>
<span class="source-line-no">159</span><span id="line-159"> public static final String HADOOP_CRED_ENTRY_CLASS_NAME =</span>
<span class="source-line-no">160</span><span id="line-160"> "org.apache.hadoop.security.alias.CredentialProvider$CredentialEntry";</span>
<span class="source-line-no">161</span><span id="line-161"> public static final String HADOOP_CRED_ENTRY_GET_CREDENTIAL_METHOD_NAME = "getCredential";</span>
<span class="source-line-no">162</span><span id="line-162"></span>
<span class="source-line-no">163</span><span id="line-163"> public static final String CREDENTIAL_PROVIDER_PATH =</span>
<span class="source-line-no">164</span><span id="line-164"> "hadoop.security.credential.provider.path";</span>
<span class="source-line-no">165</span><span id="line-165"></span>
<span class="source-line-no">166</span><span id="line-166"> private static Object hadoopCredProviderFactory = null;</span>
<span class="source-line-no">167</span><span id="line-167"> private static Method getProvidersMethod = null;</span>
<span class="source-line-no">168</span><span id="line-168"> private static Method getCredentialEntryMethod = null;</span>
<span class="source-line-no">169</span><span id="line-169"> private static Method getCredentialMethod = null;</span>
<span class="source-line-no">170</span><span id="line-170"> private static Method createCredentialEntryMethod = null;</span>
<span class="source-line-no">171</span><span id="line-171"> private static Method flushMethod = null;</span>
<span class="source-line-no">172</span><span id="line-172"> private static Boolean hadoopClassesAvailable = null;</span>
<span class="source-line-no">173</span><span id="line-173"></span>
<span class="source-line-no">174</span><span id="line-174"> /**</span>
<span class="source-line-no">175</span><span id="line-175"> * Determine if we can load the necessary CredentialProvider classes. Only loaded the first</span>
<span class="source-line-no">176</span><span id="line-176"> * time, so subsequent invocations of this method should return fast.</span>
<span class="source-line-no">177</span><span id="line-177"> * @return True if the CredentialProvider classes/methods are available, false otherwise.</span>
<span class="source-line-no">178</span><span id="line-178"> */</span>
<span class="source-line-no">179</span><span id="line-179"> private boolean isHadoopCredentialProviderAvailable() {</span>
<span class="source-line-no">180</span><span id="line-180"> if (null != hadoopClassesAvailable) {</span>
<span class="source-line-no">181</span><span id="line-181"> // Make sure everything is initialized as expected</span>
<span class="source-line-no">182</span><span id="line-182"> if (</span>
<span class="source-line-no">183</span><span id="line-183"> hadoopClassesAvailable &amp;&amp; null != getProvidersMethod &amp;&amp; null != hadoopCredProviderFactory</span>
<span class="source-line-no">184</span><span id="line-184"> &amp;&amp; null != getCredentialEntryMethod &amp;&amp; null != getCredentialMethod</span>
<span class="source-line-no">185</span><span id="line-185"> ) {</span>
<span class="source-line-no">186</span><span id="line-186"> return true;</span>
<span class="source-line-no">187</span><span id="line-187"> } else {</span>
<span class="source-line-no">188</span><span id="line-188"> // Otherwise we failed to load it</span>
<span class="source-line-no">189</span><span id="line-189"> return false;</span>
<span class="source-line-no">190</span><span id="line-190"> }</span>
<span class="source-line-no">191</span><span id="line-191"> }</span>
<span class="source-line-no">192</span><span id="line-192"></span>
<span class="source-line-no">193</span><span id="line-193"> hadoopClassesAvailable = false;</span>
<span class="source-line-no">194</span><span id="line-194"></span>
<span class="source-line-no">195</span><span id="line-195"> // Load Hadoop CredentialProviderFactory</span>
<span class="source-line-no">196</span><span id="line-196"> Class&lt;?&gt; hadoopCredProviderFactoryClz;</span>
<span class="source-line-no">197</span><span id="line-197"> try {</span>
<span class="source-line-no">198</span><span id="line-198"> hadoopCredProviderFactoryClz = Class.forName(HADOOP_CRED_PROVIDER_FACTORY_CLASS_NAME);</span>
<span class="source-line-no">199</span><span id="line-199"> } catch (ClassNotFoundException e) {</span>
<span class="source-line-no">200</span><span id="line-200"> return false;</span>
<span class="source-line-no">201</span><span id="line-201"> }</span>
<span class="source-line-no">202</span><span id="line-202"> // Instantiate Hadoop CredentialProviderFactory</span>
<span class="source-line-no">203</span><span id="line-203"> try {</span>
<span class="source-line-no">204</span><span id="line-204"> hadoopCredProviderFactory =</span>
<span class="source-line-no">205</span><span id="line-205"> hadoopCredProviderFactoryClz.getDeclaredConstructor().newInstance();</span>
<span class="source-line-no">206</span><span id="line-206"> } catch (Exception e) {</span>
<span class="source-line-no">207</span><span id="line-207"> return false;</span>
<span class="source-line-no">208</span><span id="line-208"> }</span>
<span class="source-line-no">209</span><span id="line-209"></span>
<span class="source-line-no">210</span><span id="line-210"> try {</span>
<span class="source-line-no">211</span><span id="line-211"> getProvidersMethod = loadMethod(hadoopCredProviderFactoryClz,</span>
<span class="source-line-no">212</span><span id="line-212"> HADOOP_CRED_PROVIDER_FACTORY_GET_PROVIDERS_METHOD_NAME, Configuration.class);</span>
<span class="source-line-no">213</span><span id="line-213"> // Load Hadoop CredentialProvider</span>
<span class="source-line-no">214</span><span id="line-214"> Class&lt;?&gt; hadoopCredProviderClz;</span>
<span class="source-line-no">215</span><span id="line-215"> hadoopCredProviderClz = Class.forName(HADOOP_CRED_PROVIDER_CLASS_NAME);</span>
<span class="source-line-no">216</span><span id="line-216"> getCredentialEntryMethod = loadMethod(hadoopCredProviderClz,</span>
<span class="source-line-no">217</span><span id="line-217"> HADOOP_CRED_PROVIDER_GET_CREDENTIAL_ENTRY_METHOD_NAME, String.class);</span>
<span class="source-line-no">218</span><span id="line-218"></span>
<span class="source-line-no">219</span><span id="line-219"> createCredentialEntryMethod = loadMethod(hadoopCredProviderClz,</span>
<span class="source-line-no">220</span><span id="line-220"> HADOOP_CRED_PROVIDER_CREATE_CREDENTIAL_ENTRY_METHOD_NAME, String.class, char[].class);</span>
<span class="source-line-no">221</span><span id="line-221"></span>
<span class="source-line-no">222</span><span id="line-222"> flushMethod = loadMethod(hadoopCredProviderClz, HADOOP_CRED_PROVIDER_FLUSH_METHOD_NAME);</span>
<span class="source-line-no">223</span><span id="line-223"></span>
<span class="source-line-no">224</span><span id="line-224"> // Load Hadoop CredentialEntry</span>
<span class="source-line-no">225</span><span id="line-225"> Class&lt;?&gt; hadoopCredentialEntryClz;</span>
<span class="source-line-no">226</span><span id="line-226"> try {</span>
<span class="source-line-no">227</span><span id="line-227"> hadoopCredentialEntryClz = Class.forName(HADOOP_CRED_ENTRY_CLASS_NAME);</span>
<span class="source-line-no">228</span><span id="line-228"> } catch (ClassNotFoundException e) {</span>
<span class="source-line-no">229</span><span id="line-229"> LOG.error("Failed to load class:" + e);</span>
<span class="source-line-no">230</span><span id="line-230"> return false;</span>
<span class="source-line-no">231</span><span id="line-231"> }</span>
<span class="source-line-no">232</span><span id="line-232"></span>
<span class="source-line-no">233</span><span id="line-233"> getCredentialMethod =</span>
<span class="source-line-no">234</span><span id="line-234"> loadMethod(hadoopCredentialEntryClz, HADOOP_CRED_ENTRY_GET_CREDENTIAL_METHOD_NAME);</span>
<span class="source-line-no">235</span><span id="line-235"> } catch (Exception e1) {</span>
<span class="source-line-no">236</span><span id="line-236"> return false;</span>
<span class="source-line-no">237</span><span id="line-237"> }</span>
<span class="source-line-no">238</span><span id="line-238"></span>
<span class="source-line-no">239</span><span id="line-239"> hadoopClassesAvailable = true;</span>
<span class="source-line-no">240</span><span id="line-240"> LOG.info("Credential provider classes have been"</span>
<span class="source-line-no">241</span><span id="line-241"> + " loaded and initialized successfully through reflection.");</span>
<span class="source-line-no">242</span><span id="line-242"> return true;</span>
<span class="source-line-no">243</span><span id="line-243"> }</span>
<span class="source-line-no">244</span><span id="line-244"></span>
<span class="source-line-no">245</span><span id="line-245"> private Method loadMethod(Class&lt;?&gt; clz, String name, Class&lt;?&gt;... classes) throws Exception {</span>
<span class="source-line-no">246</span><span id="line-246"> Method method;</span>
<span class="source-line-no">247</span><span id="line-247"> try {</span>
<span class="source-line-no">248</span><span id="line-248"> method = clz.getMethod(name, classes);</span>
<span class="source-line-no">249</span><span id="line-249"> } catch (SecurityException e) {</span>
<span class="source-line-no">250</span><span id="line-250"> fail("security exception caught for: " + name + " in " + clz.getCanonicalName());</span>
<span class="source-line-no">251</span><span id="line-251"> throw e;</span>
<span class="source-line-no">252</span><span id="line-252"> } catch (NoSuchMethodException e) {</span>
<span class="source-line-no">253</span><span id="line-253"> LOG.error("Failed to load the " + name + ": " + e);</span>
<span class="source-line-no">254</span><span id="line-254"> fail("no such method: " + name + " in " + clz.getCanonicalName());</span>
<span class="source-line-no">255</span><span id="line-255"> throw e;</span>
<span class="source-line-no">256</span><span id="line-256"> }</span>
<span class="source-line-no">257</span><span id="line-257"> return method;</span>
<span class="source-line-no">258</span><span id="line-258"> }</span>
<span class="source-line-no">259</span><span id="line-259"></span>
<span class="source-line-no">260</span><span id="line-260"> /**</span>
<span class="source-line-no">261</span><span id="line-261"> * Wrapper to fetch the configured {@code List&lt;CredentialProvider&gt;}s. Configuration with</span>
<span class="source-line-no">262</span><span id="line-262"> * GENERAL_SECURITY_CREDENTIAL_PROVIDER_PATHS defined</span>
<span class="source-line-no">263</span><span id="line-263"> * @return List of CredentialProviders, or null if they could not be loaded</span>
<span class="source-line-no">264</span><span id="line-264"> */</span>
<span class="source-line-no">265</span><span id="line-265"> @SuppressWarnings("unchecked")</span>
<span class="source-line-no">266</span><span id="line-266"> protected List&lt;Object&gt; getCredentialProviders(Configuration conf) {</span>
<span class="source-line-no">267</span><span id="line-267"> // Call CredentialProviderFactory.getProviders(Configuration)</span>
<span class="source-line-no">268</span><span id="line-268"> Object providersObj;</span>
<span class="source-line-no">269</span><span id="line-269"> try {</span>
<span class="source-line-no">270</span><span id="line-270"> providersObj = getProvidersMethod.invoke(hadoopCredProviderFactory, conf);</span>
<span class="source-line-no">271</span><span id="line-271"> } catch (IllegalArgumentException | InvocationTargetException | IllegalAccessException e) {</span>
<span class="source-line-no">272</span><span id="line-272"> LOG.error("Failed to invoke: " + getProvidersMethod.getName() + ": " + e);</span>
<span class="source-line-no">273</span><span id="line-273"> return null;</span>
<span class="source-line-no">274</span><span id="line-274"> }</span>
<span class="source-line-no">275</span><span id="line-275"></span>
<span class="source-line-no">276</span><span id="line-276"> // Cast the Object to List&lt;Object&gt; (actually List&lt;CredentialProvider&gt;)</span>
<span class="source-line-no">277</span><span id="line-277"> try {</span>
<span class="source-line-no">278</span><span id="line-278"> return (List&lt;Object&gt;) providersObj;</span>
<span class="source-line-no">279</span><span id="line-279"> } catch (ClassCastException e) {</span>
<span class="source-line-no">280</span><span id="line-280"> return null;</span>
<span class="source-line-no">281</span><span id="line-281"> }</span>
<span class="source-line-no">282</span><span id="line-282"> }</span>
<span class="source-line-no">283</span><span id="line-283"></span>
<span class="source-line-no">284</span><span id="line-284"> /**</span>
<span class="source-line-no">285</span><span id="line-285"> * Create a CredentialEntry using the configured Providers. If multiple CredentialProviders are</span>
<span class="source-line-no">286</span><span id="line-286"> * configured, the first will be used. Configuration for the CredentialProvider CredentialEntry</span>
<span class="source-line-no">287</span><span id="line-287"> * name (alias) The credential</span>
<span class="source-line-no">288</span><span id="line-288"> */</span>
<span class="source-line-no">289</span><span id="line-289"> public void createEntry(Configuration conf, String name, char[] credential) throws Exception {</span>
<span class="source-line-no">290</span><span id="line-290"> if (!isHadoopCredentialProviderAvailable()) {</span>
<span class="source-line-no">291</span><span id="line-291"> return;</span>
<span class="source-line-no">292</span><span id="line-292"> }</span>
<span class="source-line-no">293</span><span id="line-293"></span>
<span class="source-line-no">294</span><span id="line-294"> List&lt;Object&gt; providers = getCredentialProviders(conf);</span>
<span class="source-line-no">295</span><span id="line-295"> if (null == providers) {</span>
<span class="source-line-no">296</span><span id="line-296"> throw new IOException(</span>
<span class="source-line-no">297</span><span id="line-297"> "Could not fetch any CredentialProviders, " + "is the implementation available?");</span>
<span class="source-line-no">298</span><span id="line-298"> }</span>
<span class="source-line-no">299</span><span id="line-299"></span>
<span class="source-line-no">300</span><span id="line-300"> Object provider = providers.get(0);</span>
<span class="source-line-no">301</span><span id="line-301"> createEntryInProvider(provider, name, credential);</span>
<span class="source-line-no">302</span><span id="line-302"> }</span>
<span class="source-line-no">303</span><span id="line-303"></span>
<span class="source-line-no">304</span><span id="line-304"> /**</span>
<span class="source-line-no">305</span><span id="line-305"> * Create a CredentialEntry with the give name and credential in the credentialProvider. The</span>
<span class="source-line-no">306</span><span id="line-306"> * credentialProvider argument must be an instance of Hadoop CredentialProvider. Instance of</span>
<span class="source-line-no">307</span><span id="line-307"> * CredentialProvider CredentialEntry name (alias) The credential to store</span>
<span class="source-line-no">308</span><span id="line-308"> */</span>
<span class="source-line-no">309</span><span id="line-309"> private void createEntryInProvider(Object credentialProvider, String name, char[] credential)</span>
<span class="source-line-no">310</span><span id="line-310"> throws Exception {</span>
<span class="source-line-no">311</span><span id="line-311"> if (!isHadoopCredentialProviderAvailable()) {</span>
<span class="source-line-no">312</span><span id="line-312"> return;</span>
<span class="source-line-no">313</span><span id="line-313"> }</span>
<span class="source-line-no">314</span><span id="line-314"></span>
<span class="source-line-no">315</span><span id="line-315"> try {</span>
<span class="source-line-no">316</span><span id="line-316"> createCredentialEntryMethod.invoke(credentialProvider, name, credential);</span>
<span class="source-line-no">317</span><span id="line-317"> } catch (IllegalArgumentException | InvocationTargetException | IllegalAccessException e) {</span>
<span class="source-line-no">318</span><span id="line-318"> return;</span>
<span class="source-line-no">319</span><span id="line-319"> }</span>
<span class="source-line-no">320</span><span id="line-320"></span>
<span class="source-line-no">321</span><span id="line-321"> flushMethod.invoke(credentialProvider);</span>
<span class="source-line-no">322</span><span id="line-322"> }</span>
<span class="source-line-no">323</span><span id="line-323"> }</span>
<span class="source-line-no">324</span><span id="line-324">}</span>
</pre>
</div>
</main>
</body>
</html>