1   /*
2    * Licensed to the Apache Software Foundation (ASF) under one
3    * or more contributor license agreements.  See the NOTICE file
4    * distributed with this work for additional information
5    * regarding copyright ownership.  The ASF licenses this file
6    * to you under the Apache License, Version 2.0 (the
7    * "License"); you may not use this file except in compliance
8    * with the License.  You may obtain a copy of the License at
9    *
10   * http://www.apache.org/licenses/LICENSE-2.0
11   *
12   * Unless required by applicable law or agreed to in writing, software
13   * distributed under the License is distributed on an "AS IS" BASIS,
14   * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
15   * See the License for the specific language governing permissions and
16   * limitations under the License.
17   */
18  
19  package org.apache.hadoop.hbase.security.access;
20  
21  import java.io.IOException;
22  
23  import org.apache.hadoop.conf.Configuration;
24  import org.apache.hadoop.hbase.coprocessor.CoprocessorHost;
25  import org.apache.hadoop.hbase.ipc.SecureRpcEngine;
26  import org.apache.hadoop.hbase.security.User;
27  
28  /**
29   * Utility methods for testing security
30   */
31  public class SecureTestUtil {
32    public static void enableSecurity(Configuration conf) throws IOException {
33      conf.set("hadoop.security.authorization", "false");
34      conf.set("hadoop.security.authentication", "simple");
35      conf.set("hbase.rpc.engine", SecureRpcEngine.class.getName());
36      conf.set(CoprocessorHost.MASTER_COPROCESSOR_CONF_KEY, AccessController.class.getName());
37      conf.set(CoprocessorHost.REGION_COPROCESSOR_CONF_KEY, AccessController.class.getName()+
38              ","+SecureBulkLoadEndpoint.class.getName());
39      conf.set(CoprocessorHost.REGIONSERVER_COPROCESSOR_CONF_KEY, AccessController.class.getName());
40      // add the process running user to superusers
41      String currentUser = User.getCurrent().getName();
42      conf.set("hbase.superuser", "admin,"+currentUser);
43    }
44  }