-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/55985/
-----------------------------------------------------------
Review request for Ambari, Laszlo Puskas, Oliver Szabo, Robert Levas, and
Sebastian Toader.
Bugs: AMBARI-19725
https://issues.apache.org/jira/browse/AMBARI-19725
Repository: ambari
Description
-------
Ambari needs to configure Atlas in a way to use secure ACLs on zookeeper
znodes, when kerberos is enabled. When dekerberization happens Ambari should
remove these ACLs from the atlas znodes.
Diffs
-----
ambari-server/src/main/resources/common-services/ATLAS/0.1.0.2.3/package/scripts/metadata_server.py
36d990d
ambari-server/src/main/resources/common-services/ATLAS/0.1.0.2.3/package/scripts/params.py
afd6dde
ambari-server/src/main/resources/stacks/HDP/2.6/services/ATLAS/kerberos.json
PRE-CREATION
Diff: https://reviews.apache.org/r/55985/diff/
Testing
-------
Tested manually
- created a cluster with atlas HA
- ACL on /apache_atlas/active_server_info was world:anyone:crdwa
- enabled kerberos
- ACL on /apache_atlas/active_server_info was sasl:atlas:crdwa
- disabled kerberos
- ACL on /apache_atlas/active_server_info was world:anyone:crdwa
Existing unittest in amabri-server and ambari-agent ran successfully.
Failures are not relevant:
LoggingRequestHelperImplTest.testLogFileNameRequestBasic:373 NullPointer
LoggingRequestHelperImplTest.testLogFileNameRequestWithNullLogList:455
NullPointer
Thanks,
Attila Magyar
