(ranger) 01/01: RANGER-5434:Add test users keytabs to the ranger and dependency service docker containers

rmani Sun, 04 Jan 2026 14:18:48 -0800

This is an automated email from the ASF dual-hosted git repository.

rmani pushed a commit to branch RANGER-5434_patch
in repository https://gitbox.apache.org/repos/asf/ranger.git


commit f56f15dcbf2d3d060ca684cd3c44a01fd395191a
Author: Ramesh Mani <[email protected]>
AuthorDate: Sun Jan 4 14:17:58 2026 -0800

    RANGER-5434:Add test users keytabs to the ranger and dependency service 
docker containers
---
 dev-support/ranger-docker/scripts/admin/ranger.sh               | 3 +++
 dev-support/ranger-docker/scripts/hadoop/ranger-hadoop-setup.sh | 3 +++
 dev-support/ranger-docker/scripts/hbase/ranger-hbase-setup.sh   | 3 +++
 dev-support/ranger-docker/scripts/hive/ranger-hive-setup.sh     | 3 +++
 dev-support/ranger-docker/scripts/kafka/ranger-kafka-setup.sh   | 3 +++
 dev-support/ranger-docker/scripts/kdc/entrypoint.sh             | 9 +++++++++
 dev-support/ranger-docker/scripts/kms/ranger-kms.sh             | 3 +++
 dev-support/ranger-docker/scripts/knox/ranger-knox-setup.sh     | 3 +++
 8 files changed, 30 insertions(+)

diff --git a/dev-support/ranger-docker/scripts/admin/ranger.sh 
b/dev-support/ranger-docker/scripts/admin/ranger.sh
index 9dd781c63..7656e422c 100755
--- a/dev-support/ranger-docker/scripts/admin/ranger.sh
+++ b/dev-support/ranger-docker/scripts/admin/ranger.sh
@@ -30,6 +30,9 @@ then
     ${RANGER_SCRIPTS}/wait_for_keytab.sh rangeradmin.keytab
     ${RANGER_SCRIPTS}/wait_for_keytab.sh rangerlookup.keytab
     ${RANGER_SCRIPTS}/wait_for_keytab.sh HTTP.keytab
+    ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser1.keytab
+    ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser2.keytab
+    ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser3.keytab
   fi
 
   cd "${RANGER_HOME}"/admin || exit
diff --git a/dev-support/ranger-docker/scripts/hadoop/ranger-hadoop-setup.sh 
b/dev-support/ranger-docker/scripts/hadoop/ranger-hadoop-setup.sh
index 62d810948..ed805c122 100755
--- a/dev-support/ranger-docker/scripts/hadoop/ranger-hadoop-setup.sh
+++ b/dev-support/ranger-docker/scripts/hadoop/ranger-hadoop-setup.sh
@@ -34,6 +34,9 @@ then
   ${RANGER_SCRIPTS}/wait_for_keytab.sh rm.keytab
   ${RANGER_SCRIPTS}/wait_for_keytab.sh yarn.keytab
   ${RANGER_SCRIPTS}/wait_for_keytab.sh healthcheck.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser1.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser2.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser3.keytab
 fi
 
 cp ${RANGER_SCRIPTS}/core-site.xml ${HADOOP_HOME}/etc/hadoop/core-site.xml
diff --git a/dev-support/ranger-docker/scripts/hbase/ranger-hbase-setup.sh 
b/dev-support/ranger-docker/scripts/hbase/ranger-hbase-setup.sh
index d452bc211..3f35d699d 100755
--- a/dev-support/ranger-docker/scripts/hbase/ranger-hbase-setup.sh
+++ b/dev-support/ranger-docker/scripts/hbase/ranger-hbase-setup.sh
@@ -27,6 +27,9 @@ EOF
 if [ "${KERBEROS_ENABLED}" == "true" ]
 then
   ${RANGER_SCRIPTS}/wait_for_keytab.sh hbase.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser1.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser2.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser3.keytab
 fi
 
 cp ${RANGER_SCRIPTS}/hbase-site.xml /opt/hbase/conf/hbase-site.xml
diff --git a/dev-support/ranger-docker/scripts/hive/ranger-hive-setup.sh 
b/dev-support/ranger-docker/scripts/hive/ranger-hive-setup.sh
index 5cbaa0ef5..93b012a2f 100755
--- a/dev-support/ranger-docker/scripts/hive/ranger-hive-setup.sh
+++ b/dev-support/ranger-docker/scripts/hive/ranger-hive-setup.sh
@@ -29,6 +29,9 @@ then
   ${RANGER_SCRIPTS}/wait_for_keytab.sh hive.keytab
   ${RANGER_SCRIPTS}/wait_for_keytab.sh hdfs.keytab
   ${RANGER_SCRIPTS}/wait_for_keytab.sh HTTP.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser1.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser2.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser3.keytab
 fi
 
 cp ${RANGER_SCRIPTS}/hive-site.xml ${HIVE_HOME}/conf/hive-site.xml
diff --git a/dev-support/ranger-docker/scripts/kafka/ranger-kafka-setup.sh 
b/dev-support/ranger-docker/scripts/kafka/ranger-kafka-setup.sh
index 195f5f580..bd7795d96 100755
--- a/dev-support/ranger-docker/scripts/kafka/ranger-kafka-setup.sh
+++ b/dev-support/ranger-docker/scripts/kafka/ranger-kafka-setup.sh
@@ -25,6 +25,9 @@ EOF
 if [ "${KERBEROS_ENABLED}" == "true" ]
 then
   ${RANGER_SCRIPTS}/wait_for_keytab.sh kafka.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser1.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser2.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser3.keytab
 fi
 
 cp ${RANGER_SCRIPTS}/core-site.xml          ${KAFKA_HOME}/config/
diff --git a/dev-support/ranger-docker/scripts/kdc/entrypoint.sh 
b/dev-support/ranger-docker/scripts/kdc/entrypoint.sh
index 61dd2bd17..74ca20bb9 100644
--- a/dev-support/ranger-docker/scripts/kdc/entrypoint.sh
+++ b/dev-support/ranger-docker/scripts/kdc/entrypoint.sh
@@ -102,6 +102,14 @@ function create_keytabs() {
   create_principal_and_keytab HTTP ranger-solr
 }
 
+function create_testusers() {
+  for container in "$@"; do
+    create_principal_and_keytab testuser1 $container
+    create_principal_and_keytab testuser2 $container
+    create_principal_and_keytab testuser3 $container
+  done
+}
+
 # ensure directories
 mkdir -p $DB_DIR
 chown -R root.root /etc/krb5kdc || true
@@ -118,6 +126,7 @@ if [ ! -f $DB_DIR/principal ]; then
   echo "Database initialized"
 
   create_keytabs
+  create_testusers ranger ranger-audit ranger-hadoop ranger-hive ranger-hbase 
ranger-kafka ranger-knox ranger-solr ranger-kms ranger-ozone ranger-trino
 else
   echo "KDC DB already exists; skipping create"
 fi
diff --git a/dev-support/ranger-docker/scripts/kms/ranger-kms.sh 
b/dev-support/ranger-docker/scripts/kms/ranger-kms.sh
index a2768b324..7971ac5cf 100755
--- a/dev-support/ranger-docker/scripts/kms/ranger-kms.sh
+++ b/dev-support/ranger-docker/scripts/kms/ranger-kms.sh
@@ -28,6 +28,9 @@ then
   if [ "${KERBEROS_ENABLED}" == "true" ]
   then
     ${RANGER_SCRIPTS}/wait_for_keytab.sh rangerkms.keytab
+    ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser1.keytab
+    ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser2.keytab
+    ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser3.keytab
   fi
 
   cd "${RANGER_HOME}"/kms || exit
diff --git a/dev-support/ranger-docker/scripts/knox/ranger-knox-setup.sh 
b/dev-support/ranger-docker/scripts/knox/ranger-knox-setup.sh
index 290960cfc..6e66ef10d 100755
--- a/dev-support/ranger-docker/scripts/knox/ranger-knox-setup.sh
+++ b/dev-support/ranger-docker/scripts/knox/ranger-knox-setup.sh
@@ -25,6 +25,9 @@ EOF
 if [ "${KERBEROS_ENABLED}" == "true" ]
 then
   ${RANGER_SCRIPTS}/wait_for_keytab.sh knox.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser1.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser2.keytab
+  ${RANGER_SCRIPTS}/wait_for_keytab.sh testuser3.keytab
 fi
 
 chown -R knox:knox /opt/knox/

(ranger) 01/01: RANGER-5434:Add test users keytabs to the ranger and dependency service docker containers

Reply via email to