[jira] [Created] (AMBARI-11629) Falcon version command failed on secure runs

Tue, 02 Jun 2015 14:03:07 -0700 

Robert Levas created AMBARI-11629:
-------------------------------------

             Summary: Falcon version command failed on secure runs
                 Key: AMBARI-11629
                 URL: https://issues.apache.org/jira/browse/AMBARI-11629
             Project: Ambari
          Issue Type: Bug
          Components: ambari-agent, ambari-server
    Affects Versions: 2.1.0
            Reporter: Robert Levas
            Assignee: Robert Levas
            Priority: Blocker
             Fix For: 2.1.0


After enabling Kerberos, the value for property 
*.falcon.http.authentication.kerberos.name.rules is set to 
{code}
RULE:[1:$1@$0]([email protected])s/.*/ambari-qa/
RULE:[1:$1@$0]([email protected])s/.*/hdfs/
RULE:[1:$1@$0](.*@EXAMPLE.COM)s/@.*//
RULE:[2:$1@$0]([email protected])s/.*/ams/
RULE:[2:$1@$0]([email protected])s/.*/ams/
RULE:[2:$1@$0]([email protected])s/.*/hdfs/
RULE:[2:$1@$0]([email protected])s/.*/falcon/
RULE:[2:$1@$0]([email protected])s/.*/hive/
RULE:[2:$1@$0]([email protected])s/.*/mapred/
RULE:[2:$1@$0]([email protected])s/.*/hdfs/
RULE:[2:$1@$0]([email protected])s/.*/hdfs/
RULE:[2:$1@$0]([email protected])s/.*/yarn/
RULE:[2:$1@$0]([email protected])s/.*/hdfs/
RULE:[2:$1@$0]([email protected])s/.*/oozie/
RULE:[2:$1@$0]([email protected])s/.*/yarn/
RULE:[2:$1@$0]([email protected])s/.*/yarn/
DEFAULT
{code}

This is incorrect. The correct value should be 
{code}
RULE:[1:$1@$0]([email protected])s/.*/ambari-qa/ \
RULE:[1:$1@$0]([email protected])s/.*/hdfs/ \
RULE:[1:$1@$0](.*@EXAMPLE.COM)s/@.*// \
RULE:[2:$1@$0]([email protected])s/.*/ams/ \
RULE:[2:$1@$0]([email protected])s/.*/ams/ \
RULE:[2:$1@$0]([email protected])s/.*/hdfs/ \
RULE:[2:$1@$0]([email protected])s/.*/falcon/ \
RULE:[2:$1@$0]([email protected])s/.*/hive/ \
RULE:[2:$1@$0]([email protected])s/.*/mapred/ \
RULE:[2:$1@$0]([email protected])s/.*/hdfs/ \
RULE:[2:$1@$0]([email protected])s/.*/hdfs/ \
RULE:[2:$1@$0]([email protected])s/.*/yarn/ \
RULE:[2:$1@$0]([email protected])s/.*/hdfs/ \
RULE:[2:$1@$0]([email protected])s/.*/oozie/ \
RULE:[2:$1@$0]([email protected])s/.*/yarn/ \
RULE:[2:$1@$0]([email protected])s/.*/yarn/ \
DEFAULT
{code}

Please notice the "\" at end of each RULE. This is needed because of the type 
of configuration file the data is in - a (Java) properties file, where 
properties values must be a single line or escaped if multi-lined. 

*Solution*
Convert the multi-line auth-to-local rule to meet the requirements of the 
configuration file type.






--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to