-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/56175/
-----------------------------------------------------------
Review request for Ambari, Laszlo Puskas, Robert Levas, and Sebastian Toader.
Bugs: AMBARI-19331
https://issues.apache.org/jira/browse/AMBARI-19331
Repository: ambari
Description
-------
YARN registry and yarn leader election znodes must be protected by sasl ACLs
when kerberos enabled. The sasl ACLs should be removed after disabling kerberos.
Diffs
-----
ambari-server/src/main/resources/common-services/YARN/2.1.0.2.0/package/scripts/params_linux.py
aed8abc
ambari-server/src/main/resources/common-services/YARN/2.1.0.2.0/package/scripts/resourcemanager.py
a659dd1
ambari-server/src/main/resources/common-services/YARN/3.0.0.3.0/kerberos.json
29cc00a
ambari-server/src/main/resources/common-services/YARN/3.0.0.3.0/package/scripts/params_linux.py
4d47925
ambari-server/src/main/resources/common-services/YARN/3.0.0.3.0/package/scripts/resourcemanager.py
4d8d95e
ambari-server/src/main/resources/stacks/HDP/2.6/services/YARN/kerberos.json
eaffec6
Diff: https://reviews.apache.org/r/56175/diff/
Testing
-------
Manual testing:
- created a cluster with yarn and hive
- enabled hive interactive mode
- enabled kerberos
- checked that hive interactive started successfully
- checked acls on /registry
- disabled kerberos
- checked acls on /registry
unittests are running ....
Thanks,
Attila Magyar
