Re: Review Request 55985: Atlas deployment via Ambari should configure Zookeeper ACLs and Auth scheme

Thu, 26 Jan 2017 09:14:55 -0800 


> On Jan. 26, 2017, 5:05 p.m., Sebastian Toader wrote:
> > ambari-server/src/main/resources/common-services/ATLAS/0.1.0.2.3/package/scripts/params.py,
> >  line 84
> > <https://reviews.apache.org/r/55985/diff/1/?file=1616595#file1616595line84>
> >
> >     Is it application-properties or atlas-application.properties

I think application-properties is correct. It is used other places in a similar 
way. Like default("/configurations/application-properties/atlas.enableTLS", 
False)


- Attila


-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/55985/#review163135
-----------------------------------------------------------


On Jan. 26, 2017, 4:38 p.m., Attila Magyar wrote:
> 
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/55985/
> -----------------------------------------------------------
> 
> (Updated Jan. 26, 2017, 4:38 p.m.)
> 
> 
> Review request for Ambari, Laszlo Puskas, Oliver Szabo, Robert Levas, and 
> Sebastian Toader.
> 
> 
> Bugs: AMBARI-19725
>     https://issues.apache.org/jira/browse/AMBARI-19725
> 
> 
> Repository: ambari
> 
> 
> Description
> -------
> 
> Ambari needs to configure Atlas in a way to use secure ACLs on zookeeper 
> znodes, when kerberos is enabled. When dekerberization happens Ambari should 
> remove these ACLs from the atlas znodes.
> 
> 
> Diffs
> -----
> 
>   
> ambari-server/src/main/resources/common-services/ATLAS/0.1.0.2.3/package/scripts/metadata_server.py
>  36d990d 
>   
> ambari-server/src/main/resources/common-services/ATLAS/0.1.0.2.3/package/scripts/params.py
>  afd6dde 
>   
> ambari-server/src/main/resources/stacks/HDP/2.6/services/ATLAS/kerberos.json 
> PRE-CREATION 
> 
> Diff: https://reviews.apache.org/r/55985/diff/
> 
> 
> Testing
> -------
> 
> Tested manually
>  - created a cluster with atlas HA
>  - ACL on /apache_atlas/active_server_info was world:anyone:crdwa
>  - enabled kerberos
>  - ACL on /apache_atlas/active_server_info was sasl:atlas:crdwa
>  - disabled kerberos
>  - ACL on /apache_atlas/active_server_info was world:anyone:crdwa
>  
>  
> Existing unittest in amabri-server and ambari-agent ran successfully.
> Failures are not relevant:
>   LoggingRequestHelperImplTest.testLogFileNameRequestBasic:373 NullPointer
>   LoggingRequestHelperImplTest.testLogFileNameRequestWithNullLogList:455 
> NullPointer
> 
> 
> Thanks,
> 
> Attila Magyar
> 
>

Reply via email to