org.apache.hadoop.hbase.security
Class HBaseMultiRealmUserAuthentication

java.lang.Object
  extended by org.apache.hadoop.hbase.security.HBaseMultiRealmUserAuthentication

public class HBaseMultiRealmUserAuthentication
extends Object


Field Summary
static String KERBEROS_USER_REALM
           
static String KERBEROS_USER_REALM_PRINCIPAL
           
 
Constructor Summary
HBaseMultiRealmUserAuthentication()
           
 
Method Summary
static org.apache.hadoop.security.UserGroupInformation getServerUGIForUserRealm(org.apache.hadoop.conf.Configuration conf)
          return the subject for server Principal in the user realm This will be the same name as the server principal of the default realm with the realm name replaced with the user realm name.
static boolean isAUserInADifferentRealm(org.apache.hadoop.security.UserGroupInformation ticket, org.apache.hadoop.conf.Configuration conf)
          Forwarding method, doesn't have to be synchronized.
static String replaceRealmWithUserRealm(String principalName, org.apache.hadoop.conf.Configuration conf)
          replaces the realm part of the principal name with the user realm This method will be invoked by client side
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

KERBEROS_USER_REALM_PRINCIPAL

public static String KERBEROS_USER_REALM_PRINCIPAL

KERBEROS_USER_REALM

public static String KERBEROS_USER_REALM
Constructor Detail

HBaseMultiRealmUserAuthentication

public HBaseMultiRealmUserAuthentication()
Method Detail

isAUserInADifferentRealm

public static boolean isAUserInADifferentRealm(org.apache.hadoop.security.UserGroupInformation ticket,
                                               org.apache.hadoop.conf.Configuration conf)
                                        throws IOException
Forwarding method, doesn't have to be synchronized.

Throws:
IOException

getServerUGIForUserRealm

public static org.apache.hadoop.security.UserGroupInformation getServerUGIForUserRealm(org.apache.hadoop.conf.Configuration conf)
                                                                                throws IOException
return the subject for server Principal in the user realm This will be the same name as the server principal of the default realm with the realm name replaced with the user realm name. Once created, the the UGI is cached.

Parameters:
conf -
Returns:
UserGroupInformation
Throws:
IOException

replaceRealmWithUserRealm

public static String replaceRealmWithUserRealm(String principalName,
                                               org.apache.hadoop.conf.Configuration conf)
                                        throws IOException
replaces the realm part of the principal name with the user realm This method will be invoked by client side

Parameters:
principalName -
conf -
Returns:
string value containing server principal in user realm
Throws:
IOException


Copyright © 2015 The Apache Software Foundation. All Rights Reserved.