Google Git
Sign in
apache / incubator-ambari / 181ea4f3dcf3c033218d5330d441b63e91ef24ee / . / ambari-web / app / controllers / main / admin / security.js
blob: 092a8db4edfe33e5df7be4b679ba3072728721b0 [file] [log] [blame]
/**
* Licensed to the Apache Software Foundation (ASF) under one
* or more contributor license agreements. See the NOTICE file
* distributed with this work for additional information
* regarding copyright ownership. The ASF licenses this file
* to you under the Apache License, Version 2.0 (the
* "License"); you may not use this file except in compliance
* with the License. You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
var App = require('app');
App.MainAdminSecurityController = Em.Controller.extend({
name: 'mainAdminSecurityController',
isSubmitDisabled: false,
securityEnabled: false,
dataIsLoaded: false,
serviceUsers: [],
tag: {},
getAddSecurityWizardStatus: function () {
return App.db.getSecurityWizardStatus();
},
setAddSecurityWizardStatus: function (status) {
App.db.setSecurityWizardStatus(status);
},
setDisableSecurityStatus: function (status) {
App.db.setDisableSecurityStatus(status);
},
getDisableSecurityStatus: function (status) {
return App.db.getDisableSecurityStatus();
},
notifySecurityOff: false,
notifySecurityAdd: false,
stepConfigs: [],
desiredConfigs: [],
securityUsers: [],
serviceConfigTags: [],
selectedService: null,
isNotEditable: true,
services: function(){
var secureServices;
var services = [];
if(App.get('isHadoop2Stack')) {
secureServices = $.extend(true, [], require('data/HDP2/secure_configs'));
} else {
secureServices = $.extend(true, [], require('data/secure_configs'));
}
var installedServices = App.Service.find().mapProperty('serviceName');
//General (only non service tab) tab is always displayed
services.push(secureServices.findProperty('serviceName', 'GENERAL'));
installedServices.forEach(function (_service) {
var secureService = secureServices.findProperty('serviceName', _service);
if (secureService) {
services.push(secureService);
}
}, this);
return services;
}.property(),
loadStep: function(){
var step2Controller = App.router.get('mainAdminSecurityAddStep2Controller');
var services = this.get('services');
this.get('stepConfigs').clear();
this.get('securityUsers').clear();
this.get('serviceConfigTags').clear();
this.loadSecurityUsers();
//loadSecurityUsers - desired configs fetched from server
step2Controller.addUserPrincipals(services, this.get('securityUsers'));
step2Controller.addMasterHostToGlobals(services);
step2Controller.addSlaveHostToGlobals(services);
this.renderServiceConfigs(services);
step2Controller.changeCategoryOnHa(services, this.get('stepConfigs'));
services.forEach(function (_secureService) {
this.setServiceTagNames(_secureService, this.get('desiredConfigs'));
}, this);
var serverConfigs = App.router.get('configurationController').getConfigsByTags(this.get('serviceConfigTags'));
this.setConfigValuesFromServer(this.get('stepConfigs'), serverConfigs);
this.set('installedServices', App.Service.find().mapProperty('serviceName'));
},
/**
* get actual values of configurations from server
* @param stepConfigs
* @param serverConfigs
*/
setConfigValuesFromServer: function(stepConfigs, serverConfigs){
var allConfigs = {};
serverConfigs.mapProperty('properties').forEach(function(_properties){
allConfigs = $.extend(allConfigs, _properties);
}, this);
// for all services`
stepConfigs.forEach(function (_content) {
//for all components
_content.get('configs').forEach(function (_config) {
var componentVal = allConfigs[_config.get('name')];
//if we have config for specified component
if (componentVal) {
//set it
_config.set('value', componentVal);
}
}, this);
}, this);
},
/**
* set tag names according to installed services and desired configs
* @param secureService
* @param configs
* @return {Object}
*/
setServiceTagNames: function (secureService, configs) {
//var serviceConfigTags = this.get('serviceConfigTags');
for (var index in configs) {
if (secureService.sites && secureService.sites.contains(index)) {
var serviceConfigObj = {
siteName: index,
tagName: configs[index].tag,
newTagName: null,
configs: {}
};
console.log("The value of serviceConfigTags[index]: " + configs[index]);
this.get('serviceConfigTags').pushObject(serviceConfigObj);
}
}
return serviceConfigObj;
},
loadSecurityUsers: function () {
var securityUsers = this.get('serviceUsers');
if (!securityUsers || securityUsers.length < 1) { // Page could be refreshed in middle
if (App.testMode) {
securityUsers.pushObject({id: 'puppet var', name: 'hdfs_user', value: 'hdfs'});
securityUsers.pushObject({id: 'puppet var', name: 'mapred_user', value: 'mapred'});
securityUsers.pushObject({id: 'puppet var', name: 'hbase_user', value: 'hbase'});
securityUsers.pushObject({id: 'puppet var', name: 'hive_user', value: 'hive'});
securityUsers.pushObject({id: 'puppet var', name: 'smokeuser', value: 'ambari-qa'});
} else {
this.setSecurityStatus();
securityUsers = this.get('serviceUsers');
}
}
this.set('securityUsers', securityUsers);
},
/**
* fill config with hosts of component
* @param service
* @param configName
* @param componentName
*/
setHostsToConfig: function (service, configName, componentName) {
if (service) {
var hosts = service.configs.findProperty('name', configName);
if (hosts) {
hosts.defaultValue = App.Service.find(service.serviceName)
.get('hostComponents')
.filterProperty('componentName', componentName)
.mapProperty('host.hostName');
}
}
},
/**
* Load child components to service config object
* @param _componentConfig
* @param componentConfig
*/
loadComponentConfigs: function (_componentConfig, componentConfig) {
_componentConfig.configs.forEach(function (_serviceConfigProperty) {
var serviceConfigProperty = App.ServiceConfigProperty.create(_serviceConfigProperty);
componentConfig.configs.pushObject(serviceConfigProperty);
serviceConfigProperty.set('isEditable', serviceConfigProperty.get('isReconfigurable'));
serviceConfigProperty.validate();
}, this);
},
/**
* Render configs for active services
* @param serviceConfigs
*/
renderServiceConfigs: function (serviceConfigs) {
serviceConfigs.forEach(function (_serviceConfig) {
var serviceConfig = App.ServiceConfig.create({
filename: _serviceConfig.filename,
serviceName: _serviceConfig.serviceName,
displayName: _serviceConfig.displayName,
configCategories: _serviceConfig.configCategories,
showConfig: true,
configs: []
});
this.loadComponentConfigs(_serviceConfig, serviceConfig);
console.log('pushing ' + serviceConfig.serviceName, serviceConfig);
this.get('stepConfigs').pushObject(serviceConfig);
}, this);
this.set('selectedService', this.get('stepConfigs').filterProperty('showConfig', true).objectAt(0));
},
notifySecurityOffPopup: function () {
var self = this;
if (!this.get('isSubmitDisabled')) {
App.ModalPopup.show({
header: Em.I18n.t('popup.confirmation.commonHeader'),
primary: Em.I18n.t('ok'),
onPrimary: function () {
App.db.setSecurityDeployStages(undefined);
self.setDisableSecurityStatus("RUNNING");
App.router.transitionTo('disableSecurity');
this.hide();
},
bodyClass: Ember.View.extend({
isMapReduceInstalled: App.Service.find().mapProperty('serviceName').contains('MAPREDUCE'),
template: Ember.Handlebars.compile([
'<div class="alert">',
'{{t admin.security.disable.popup.body}}',
'{{#if view.isMapReduceInstalled}}',
'<br>',
'{{t admin.security.disable.popup.body.warning}}',
'{{/if}}',
'</div>'
].join('\n'))
})
})
}
},
getUpdatedSecurityStatus: function () {
this.setSecurityStatus();
return this.get('securityEnabled');
},
setSecurityStatus: function () {
if (App.testMode) {
this.set('securityEnabled', !App.testEnableSecurity);
this.set('dataIsLoaded', true);
} else {
//get Security Status From Server
App.ajax.send({
name: 'admin.security_status',
sender: this,
success: 'getSecurityStatusFromServerSuccessCallback',
error: 'errorCallback'
});
}
},
errorCallback: function () {
this.set('dataIsLoaded', true);
this.showSecurityErrorPopup();
},
getSecurityStatusFromServerSuccessCallback: function (data) {
var configs = data.Clusters.desired_configs;
this.set('desiredConfigs', configs);
if ('global' in configs && 'hdfs-site' in configs) {
this.set('tag.global', configs['global'].tag);
this.set('tag.hdfs-site', configs['hdfs-site'].tag);
this.getServiceConfigsFromServer();
}
else {
this.showSecurityErrorPopup();
}
},
getServiceConfigsFromServer: function () {
var tags = [
{
siteName: "global",
tagName: this.get('tag.global')
},
{
siteName: "hdfs-site",
tagName: this.get('tag.hdfs-site')
}
];
var data = App.router.get('configurationController').getConfigsByTags(tags);
var configs = data.findProperty('tag', this.get('tag.global')).properties;
if (configs && (configs['security_enabled'] === 'true' || configs['security_enabled'] === true)) {
this.set('securityEnabled', true);
}
else {
this.set('securityEnabled', false);
var hdfsConfigs = data.findProperty('tag', this.get('tag.hdfs-site')).properties;
this.setNnHaStatus(hdfsConfigs);
}
this.loadUsers(configs);
this.set('dataIsLoaded', true);
},
setNnHaStatus: function(hdfsConfigs) {
var nnHaStatus = hdfsConfigs && hdfsConfigs['dfs.nameservices'];
var namenodesKey;
if (nnHaStatus) {
namenodesKey = 'dfs.ha.namenodes.' + hdfsConfigs['dfs.nameservices'];
}
if(nnHaStatus && hdfsConfigs[namenodesKey]) {
App.db.setIsNameNodeHa('true');
} else {
App.db.setIsNameNodeHa('false');
}
},
loadUsers: function (configs) {
var serviceUsers = this.get('serviceUsers');
serviceUsers.pushObject({
id: 'puppet var',
name: 'hdfs_user',
value: configs['hdfs_user'] ? configs['hdfs_user'] : 'hdfs'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'yarn_user',
value: configs['yarn_user'] ? configs['yarn_user'] : 'yarn'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'mapred_user',
value: configs['mapred_user'] ? configs['mapred_user'] : 'mapred'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'hbase_user',
value: configs['hbase_user'] ? configs['hbase_user'] : 'hbase'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'hive_user',
value: configs['hive_user'] ? configs['hive_user'] : 'hive'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'proxyuser_group',
value: configs['proxyuser_group'] ? configs['proxyuser_group'] : 'users'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'smokeuser',
value: configs['smokeuser'] ? configs['smokeuser'] : 'ambari-qa'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'zk_user',
value: configs['zk_user'] ? configs['zk_user'] : 'zookeeper'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'oozie_user',
value: configs['oozie_user'] ? configs['oozie_user'] : 'oozie'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'nagios_user',
value: configs['nagios_user'] ? configs['nagios_user'] : 'nagios'
});
serviceUsers.pushObject({
id: 'puppet var',
name: 'user_group',
value: configs['user_group'] ? configs['user_group'] : 'hadoop'
});
App.db.setSecureUserInfo(serviceUsers);
},
showSecurityErrorPopup: function () {
App.ModalPopup.show({
header: Em.I18n.t('common.error'),
secondary: false,
onPrimary: function () {
this.hide();
},
bodyClass: Ember.View.extend({
template: Ember.Handlebars.compile('<p>{{t admin.security.status.error}}</p>')
})
});
}
});