[jira] [Updated] (AMBARI-23213) Enable or disable SSO using Ambari CLI with options

Mon, 12 Mar 2018 13:52:23 -0700 

     [ 
https://issues.apache.org/jira/browse/AMBARI-23213?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sandor Molnar updated AMBARI-23213:
-----------------------------------
    Description: 
To enable or disable SSO using the Ambari CLI, the user needs to answer each 
prompt. This is not convenient for automated tools. So the following command 
line options should be available for use. If any mandatory option is not 
specified via the command line, the user should be prompted for a value.

Global SSO options:
 * {{--sso-enabled}}

if {{sso-enabled}} is "true":
 * {{--sso-provider-url}}
 * {{--sso-public-cert-file}}
 * {{--sso-jwt-cookie-name}}
 ** optional, if not supplied, the documented default value will be used
 * {{--sso-jwt-audience-list}}
 ** optional, if not supplied, the documented default value will be used

{noformat:title=Examples}
ambari-server setup-sso --help

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw 

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw 
--sso-jwt-audience-list=ambari

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem

ambari-server setup-sso --sso-enabled=false
{noformat}

  was:
To enable or disable SSO using the Ambari CLI, the user needs to answer each 
prompt.   This is not convenient for automated tools.  So the following command 
line options should be available for use.  If any mandatory option is not 
specified via the command line, the user should be prompted for a value. 

Global SSO options:
* {{--sso-enabled}} 

if {{sso-enabled}} is "true":
* {{--sso-provider-url}}
* {{--sso-public-cert-file}}
* {{--sso-jwt-cookie-name}}
** optional, if not supplied, the documented default value will be used
* {{--sso-jwt-audience}}
** optional, if not supplied, the documented default value will be used


{noformat:title=Examples}
ambari-server setup-sso --help

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw 

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw 
--sso-jwt-audience-list=ambari

ambari-server setup-sso --sso-enabled=true 
--sso-provider-url=https://knox.ambari.apache.org:8443 
--sso-public-cert-file=/tmp/sso.pem

ambari-server setup-sso --sso-enabled=false
{noformat}


> Enable or disable SSO using Ambari CLI with options
> ---------------------------------------------------
>
>                 Key: AMBARI-23213
>                 URL: https://issues.apache.org/jira/browse/AMBARI-23213
>             Project: Ambari
>          Issue Type: Task
>          Components: ambari-server
>    Affects Versions: 2.7.0
>            Reporter: Sandor Molnar
>            Assignee: Sandor Molnar
>            Priority: Critical
>              Labels: SSO, security
>             Fix For: 2.7.0
>
>
> To enable or disable SSO using the Ambari CLI, the user needs to answer each 
> prompt. This is not convenient for automated tools. So the following command 
> line options should be available for use. If any mandatory option is not 
> specified via the command line, the user should be prompted for a value.
> Global SSO options:
>  * {{--sso-enabled}}
> if {{sso-enabled}} is "true":
>  * {{--sso-provider-url}}
>  * {{--sso-public-cert-file}}
>  * {{--sso-jwt-cookie-name}}
>  ** optional, if not supplied, the documented default value will be used
>  * {{--sso-jwt-audience-list}}
>  ** optional, if not supplied, the documented default value will be used
> {noformat:title=Examples}
> ambari-server setup-sso --help
> ambari-server setup-sso --sso-enabled=true 
> --sso-provider-url=https://knox.ambari.apache.org:8443 
> --sso-public-cert-file=/tmp/sso.pem
> ambari-server setup-sso --sso-enabled=true 
> --sso-provider-url=https://knox.ambari.apache.org:8443 
> --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw 
> ambari-server setup-sso --sso-enabled=true 
> --sso-provider-url=https://knox.ambari.apache.org:8443 
> --sso-public-cert-file=/tmp/sso.pem --sso-jwt-cookie-name=ambari-jtw 
> --sso-jwt-audience-list=ambari
> ambari-server setup-sso --sso-enabled=true 
> --sso-provider-url=https://knox.ambari.apache.org:8443 
> --sso-public-cert-file=/tmp/sso.pem
> ambari-server setup-sso --sso-enabled=false
> {noformat}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to