conf/proto-hive-site.xml - hcatalog - Git at Google

 <?xml version="1.0"?>
 <?xml-stylesheet type="text/xsl" href="configuration.xsl"?>

 <!--
     Licensed to the Apache Software Foundation (ASF) under one
     or more contributor license agreements.  See the NOTICE file
     distributed with this work for additional information
     regarding copyright ownership.  The ASF licenses this file
     to you under the Apache License, Version 2.0 (the
     "License"); you may not use this file except in compliance
     with the License.  You may obtain a copy of the License at

         http://www.apache.org/licenses/LICENSE-2.0

     Unless required by applicable law or agreed to in writing,
     software distributed under the License is distributed on an
     "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
     KIND, either express or implied.  See the License for the
     specific language governing permissions and limitations
     under the License.
 -->

 <configuration>

 <property>
   <name>hive.metastore.execute.setugi</name>
   <value>true</value>
   <description>In unsecure mode, setting this property to true will cause the metastore to execute DFS operations using the client's reported user and group permissions. Note that this property must be set on both the client and server sides. Further note that its best effort. If client sets its to true and server sets it to false, client setting will be ignored.</description>
 </property>

 <property>
   <name>hive.metastore.local</name>
   <value>false</value>
   <description>controls whether to connect to remove metastore server or open a new metastore server in Hive Client JVM</description>
 </property>

 <property>
   <name>javax.jdo.option.ConnectionURL</name>
   <value>jdbc:mysql://DBHOSTNAME/hivemetastoredb?createDatabaseIfNotExist=true</value>
   <description>JDBC connect string for a JDBC metastore</description>
 </property>

 <property>
   <name>javax.jdo.option.ConnectionDriverName</name>
   <value>com.mysql.jdbc.Driver</value>
   <description>Driver class name for a JDBC metastore</description>
 </property>

 <property>
   <name>javax.jdo.option.ConnectionUserName</name>
   <value>hive</value>
   <description>username to use against metastore database</description>
 </property>

 <property>
   <name>javax.jdo.option.ConnectionPassword</name>
   <value>PASSWORD</value>
   <description>password to use against metastore database</description>
 </property>

 <property>
   <name>hive.metastore.warehouse.dir</name>
   <value>WAREHOUSE_DIR</value>
   <description>location of default database for the warehouse</description>
 </property>

 <property>
   <name>hive.metastore.sasl.enabled</name>
     <value>SASL_ENABLED</value>
     <description>If true, the metastore thrift interface will be secured with SASL. Clients must authenticate with Kerberos.</description>
 </property>

 <property>
   <name>hive.metastore.kerberos.keytab.file</name>
   <value>KEYTAB_PATH</value>
   <description>The path to the Kerberos Keytab file containing the metastore thrift server's service principal.</description>
 </property>

 <property>
   <name>hive.metastore.kerberos.principal</name>
   <value>KERBEROS_PRINCIPAL</value>
   <description>The service principal for the metastore thrift server. The special string _HOST will be replaced automatically with the correct host name.</description>
 </property>

 <property>
   <name>hive.metastore.cache.pinobjtypes</name>
   <value>Table,Database,Type,FieldSchema,Order</value>
   <description>List of comma separated metastore object types that should be pinned in the cache</description>
 </property>

 <property>
   <name>hive.metastore.uris</name>
   <value>thrift://SVRHOST:PORT</value>
   <description>URI for client to contact metastore server</description>
 </property>

 <property>
   <name>hive.semantic.analyzer.factory.impl</name>
   <value>org.apache.hcatalog.cli.HCatSemanticAnalyzerFactory</value>
   <description>controls which SemanticAnalyzerFactory implemenation class is used by CLI</description>
 </property>

 <property>
   <name>hive.metastore.client.socket.timeout</name>
   <value>60</value>
   <description>MetaStore Client socket timeout in seconds</description>
 </property>

 <property>
   <name>hive.security.authorization.enabled</name>
   <value>true</value>
   <description>enable or disable the hive client authorization</description>
 </property>

 <property>
   <name>hive.security.authorization.manager</name>
   <value>org.apache.hcatalog.security.StorageDelegationAuthorizationProvider</value>
   <description>the hive client authorization manager class name.
   The user defined authorization class should implement interface org.apache.hadoop.hive.ql.security.authorization.HiveAuthorizationProvider.
   HCatalog uses a model, where authorization checks are delegated to the storage layer (hdfs, hbase, ...).
   </description>
 </property>

 </configuration>
	<?xml version="1.0"?>
	<?xml-stylesheet type="text/xsl" href="configuration.xsl"?>

	<!--
	Licensed to the Apache Software Foundation (ASF) under one
	or more contributor license agreements. See the NOTICE file
	distributed with this work for additional information
	regarding copyright ownership. The ASF licenses this file
	to you under the Apache License, Version 2.0 (the
	"License"); you may not use this file except in compliance
	with the License. You may obtain a copy of the License at

	http://www.apache.org/licenses/LICENSE-2.0

	Unless required by applicable law or agreed to in writing,
	software distributed under the License is distributed on an
	"AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
	KIND, either express or implied. See the License for the
	specific language governing permissions and limitations
	under the License.
	-->

	<configuration>

	<property>
	<name>hive.metastore.execute.setugi</name>
	<value>true</value>
	<description>In unsecure mode, setting this property to true will cause the metastore to execute DFS operations using the client's reported user and group permissions. Note that this property must be set on both the client and server sides. Further note that its best effort. If client sets its to true and server sets it to false, client setting will be ignored.</description>
	</property>

	<property>
	<name>hive.metastore.local</name>
	<value>false</value>
	<description>controls whether to connect to remove metastore server or open a new metastore server in Hive Client JVM</description>
	</property>

	<property>
	<name>javax.jdo.option.ConnectionURL</name>
	<value>jdbc:mysql://DBHOSTNAME/hivemetastoredb?createDatabaseIfNotExist=true</value>
	<description>JDBC connect string for a JDBC metastore</description>
	</property>

	<property>
	<name>javax.jdo.option.ConnectionDriverName</name>
	<value>com.mysql.jdbc.Driver</value>
	<description>Driver class name for a JDBC metastore</description>
	</property>

	<property>
	<name>javax.jdo.option.ConnectionUserName</name>
	<value>hive</value>
	<description>username to use against metastore database</description>
	</property>

	<property>
	<name>javax.jdo.option.ConnectionPassword</name>
	<value>PASSWORD</value>
	<description>password to use against metastore database</description>
	</property>

	<property>
	<name>hive.metastore.warehouse.dir</name>
	<value>WAREHOUSE_DIR</value>
	<description>location of default database for the warehouse</description>
	</property>

	<property>
	<name>hive.metastore.sasl.enabled</name>
	<value>SASL_ENABLED</value>
	<description>If true, the metastore thrift interface will be secured with SASL. Clients must authenticate with Kerberos.</description>
	</property>

	<property>
	<name>hive.metastore.kerberos.keytab.file</name>
	<value>KEYTAB_PATH</value>
	<description>The path to the Kerberos Keytab file containing the metastore thrift server's service principal.</description>
	</property>

	<property>
	<name>hive.metastore.kerberos.principal</name>
	<value>KERBEROS_PRINCIPAL</value>
	<description>The service principal for the metastore thrift server. The special string _HOST will be replaced automatically with the correct host name.</description>
	</property>

	<property>
	<name>hive.metastore.cache.pinobjtypes</name>
	<value>Table,Database,Type,FieldSchema,Order</value>
	<description>List of comma separated metastore object types that should be pinned in the cache</description>
	</property>

	<property>
	<name>hive.metastore.uris</name>
	<value>thrift://SVRHOST:PORT</value>
	<description>URI for client to contact metastore server</description>
	</property>

	<property>
	<name>hive.semantic.analyzer.factory.impl</name>
	<value>org.apache.hcatalog.cli.HCatSemanticAnalyzerFactory</value>
	<description>controls which SemanticAnalyzerFactory implemenation class is used by CLI</description>
	</property>

	<property>
	<name>hive.metastore.client.socket.timeout</name>
	<value>60</value>
	<description>MetaStore Client socket timeout in seconds</description>
	</property>

	<property>
	<name>hive.security.authorization.enabled</name>
	<value>true</value>
	<description>enable or disable the hive client authorization</description>
	</property>

	<property>
	<name>hive.security.authorization.manager</name>
	<value>org.apache.hcatalog.security.StorageDelegationAuthorizationProvider</value>
	<description>the hive client authorization manager class name.
	The user defined authorization class should implement interface org.apache.hadoop.hive.ql.security.authorization.HiveAuthorizationProvider.
	HCatalog uses a model, where authorization checks are delegated to the storage layer (hdfs, hbase, ...).
	</description>
	</property>

	</configuration>