itests/hive-unit/src/test/java/org/apache/hadoop/hive/metastore/security/TestDBTokenStore.java - hive - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package org.apache.hadoop.hive.metastore.security;

 import java.io.IOException;
 import java.util.List;


 import org.apache.hadoop.hive.metastore.HMSHandler;
 import org.apache.hadoop.hive.metastore.api.MetaException;
 import org.apache.hadoop.hive.metastore.api.NoSuchObjectException;
 import org.apache.hadoop.hive.metastore.conf.MetastoreConf;
 import org.apache.hadoop.hive.metastore.security.DBTokenStore;
 import org.apache.hadoop.hive.metastore.security.DelegationTokenStore.TokenStoreException;
 import org.apache.hadoop.io.Text;
 import org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager.DelegationTokenInformation;
 import org.apache.hadoop.security.token.delegation.HiveDelegationTokenSupport;
 import org.junit.Assert;
 import static org.junit.Assert.assertEquals;
 import static org.junit.Assert.fail;
 import static org.junit.Assert.assertTrue;
 import static org.junit.Assert.assertNull;
 import static org.junit.Assert.assertFalse;
 import static org.junit.Assert.assertNotSame;
 import org.junit.Test;

 /**
  * TestDBTokenStore.
  */
 public class TestDBTokenStore {

   @Test
   public void testDBTokenStore() throws TokenStoreException, MetaException, IOException {

     DelegationTokenStore ts = new DBTokenStore();
     HMSHandler hms = new HMSHandler("Test handler", MetastoreConf.newMetastoreConf());
     hms.init();
     ts.init(hms, HadoopThriftAuthBridge.Server.ServerMode.METASTORE);
     assertEquals(0, ts.getMasterKeys().length);
     assertEquals(false,ts.removeMasterKey(-1));
     try{
       ts.updateMasterKey(-1, "non-existent-key");
       fail("Updated non-existent key.");
     } catch (TokenStoreException e) {
       assertTrue(e.getCause() instanceof NoSuchObjectException);
     }
     int keySeq = ts.addMasterKey("key1Data");
     int keySeq2 = ts.addMasterKey("key2Data");
     int keySeq2same = ts.addMasterKey("key2Data");
     assertEquals("keys sequential", keySeq + 1, keySeq2);
     assertEquals("keys sequential", keySeq + 2, keySeq2same);
     assertEquals("expected number of keys", 3, ts.getMasterKeys().length);
     assertTrue(ts.removeMasterKey(keySeq));
     assertTrue(ts.removeMasterKey(keySeq2same));
     assertEquals("expected number of keys", 1, ts.getMasterKeys().length);
     assertEquals("key2Data",ts.getMasterKeys()[0]);
     ts.updateMasterKey(keySeq2, "updatedData");
     assertEquals("updatedData",ts.getMasterKeys()[0]);
     assertTrue(ts.removeMasterKey(keySeq2));

     // tokens
     assertEquals(0, ts.getAllDelegationTokenIdentifiers().size());
     DelegationTokenIdentifier tokenId = new DelegationTokenIdentifier(
         new Text("owner"), new Text("renewer"), new Text("realUser"));
     assertNull(ts.getToken(tokenId));
     assertFalse(ts.removeToken(tokenId));
     DelegationTokenInformation tokenInfo = new DelegationTokenInformation(
         99, "password".getBytes());
     assertTrue(ts.addToken(tokenId, tokenInfo));
     assertFalse(ts.addToken(tokenId, tokenInfo));
     DelegationTokenInformation tokenInfoRead = ts.getToken(tokenId);
     assertEquals(tokenInfo.getRenewDate(), tokenInfoRead.getRenewDate());
     assertNotSame(tokenInfo, tokenInfoRead);
     Assert.assertArrayEquals(HiveDelegationTokenSupport
         .encodeDelegationTokenInformation(tokenInfo),
         HiveDelegationTokenSupport
             .encodeDelegationTokenInformation(tokenInfoRead));

     List<DelegationTokenIdentifier> allIds = ts
         .getAllDelegationTokenIdentifiers();
     assertEquals(1, allIds.size());
     Assert.assertEquals(TokenStoreDelegationTokenSecretManager
         .encodeWritable(tokenId),
         TokenStoreDelegationTokenSecretManager.encodeWritable(allIds
             .get(0)));

     assertTrue(ts.removeToken(tokenId));
     assertEquals(0, ts.getAllDelegationTokenIdentifiers().size());
     assertNull(ts.getToken(tokenId));
     ts.close();
   }
 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package org.apache.hadoop.hive.metastore.security;

	import java.io.IOException;
	import java.util.List;



	import org.apache.hadoop.hive.metastore.HMSHandler;
	import org.apache.hadoop.hive.metastore.api.MetaException;
	import org.apache.hadoop.hive.metastore.api.NoSuchObjectException;
	import org.apache.hadoop.hive.metastore.conf.MetastoreConf;
	import org.apache.hadoop.hive.metastore.security.DBTokenStore;
	import org.apache.hadoop.hive.metastore.security.DelegationTokenStore.TokenStoreException;
	import org.apache.hadoop.io.Text;
	import org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager.DelegationTokenInformation;
	import org.apache.hadoop.security.token.delegation.HiveDelegationTokenSupport;
	import org.junit.Assert;
	import static org.junit.Assert.assertEquals;
	import static org.junit.Assert.fail;
	import static org.junit.Assert.assertTrue;
	import static org.junit.Assert.assertNull;
	import static org.junit.Assert.assertFalse;
	import static org.junit.Assert.assertNotSame;
	import org.junit.Test;

	/**
	* TestDBTokenStore.
	*/
	public class TestDBTokenStore {

	@Test
	public void testDBTokenStore() throws TokenStoreException, MetaException, IOException {

	DelegationTokenStore ts = new DBTokenStore();
	HMSHandler hms = new HMSHandler("Test handler", MetastoreConf.newMetastoreConf());
	hms.init();
	ts.init(hms, HadoopThriftAuthBridge.Server.ServerMode.METASTORE);
	assertEquals(0, ts.getMasterKeys().length);
	assertEquals(false,ts.removeMasterKey(-1));
	try{
	ts.updateMasterKey(-1, "non-existent-key");
	fail("Updated non-existent key.");
	} catch (TokenStoreException e) {
	assertTrue(e.getCause() instanceof NoSuchObjectException);
	}
	int keySeq = ts.addMasterKey("key1Data");
	int keySeq2 = ts.addMasterKey("key2Data");
	int keySeq2same = ts.addMasterKey("key2Data");
	assertEquals("keys sequential", keySeq + 1, keySeq2);
	assertEquals("keys sequential", keySeq + 2, keySeq2same);
	assertEquals("expected number of keys", 3, ts.getMasterKeys().length);
	assertTrue(ts.removeMasterKey(keySeq));
	assertTrue(ts.removeMasterKey(keySeq2same));
	assertEquals("expected number of keys", 1, ts.getMasterKeys().length);
	assertEquals("key2Data",ts.getMasterKeys()[0]);
	ts.updateMasterKey(keySeq2, "updatedData");
	assertEquals("updatedData",ts.getMasterKeys()[0]);
	assertTrue(ts.removeMasterKey(keySeq2));

	// tokens
	assertEquals(0, ts.getAllDelegationTokenIdentifiers().size());
	DelegationTokenIdentifier tokenId = new DelegationTokenIdentifier(
	new Text("owner"), new Text("renewer"), new Text("realUser"));
	assertNull(ts.getToken(tokenId));
	assertFalse(ts.removeToken(tokenId));
	DelegationTokenInformation tokenInfo = new DelegationTokenInformation(
	99, "password".getBytes());
	assertTrue(ts.addToken(tokenId, tokenInfo));
	assertFalse(ts.addToken(tokenId, tokenInfo));
	DelegationTokenInformation tokenInfoRead = ts.getToken(tokenId);
	assertEquals(tokenInfo.getRenewDate(), tokenInfoRead.getRenewDate());
	assertNotSame(tokenInfo, tokenInfoRead);
	Assert.assertArrayEquals(HiveDelegationTokenSupport
	.encodeDelegationTokenInformation(tokenInfo),
	HiveDelegationTokenSupport
	.encodeDelegationTokenInformation(tokenInfoRead));

	List<DelegationTokenIdentifier> allIds = ts
	.getAllDelegationTokenIdentifiers();
	assertEquals(1, allIds.size());
	Assert.assertEquals(TokenStoreDelegationTokenSecretManager
	.encodeWritable(tokenId),
	TokenStoreDelegationTokenSecretManager.encodeWritable(allIds
	.get(0)));

	assertTrue(ts.removeToken(tokenId));
	assertEquals(0, ts.getAllDelegationTokenIdentifiers().size());
	assertNull(ts.getToken(tokenId));
	ts.close();
	}
	}