GitHub user zhangh43 opened a pull request:
https://github.com/apache/incubator-hawq/pull/1244
HAWQ-1443. Implement Ranger lookup for HAWQ with Kerberos enabled.
This PR implements the HAWQ client in ranger to lookup HAWQ resource in
kerberos environment.
With Kerberos authentication, the jdbc URL looks like:
jdbc:postgresql://host:port/db?kerberosServerName=HawqKerberosServiceName&jaasApplicationName=pgjdbc&user=LookupPricipal
With Simple authentication, the jdbc URL just looks like:
jdbc:postgresql://host:port/db and with user name and password as parameter.
In Kerberos env, we also do kinit with principal name and principal
password. Keytab file is not supported yet.
Signed-off-by: xiang sheng <[email protected]>
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/zhangh43/incubator-hawq m2
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/incubator-hawq/pull/1244.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #1244
----
commit 9775424ba11546248ac90133330ed6f1cc331545
Author: Hubert Zhang <[email protected]>
Date: 2017-05-26T12:17:53Z
HAWQ-1443. Implement Ranger lookup for HAWQ with Kerberos enabled.
Signed-off-by: xiang sheng <[email protected]>
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
