nifi_properties['nifi.kerberos.spnego.principal'] = nifi_properties[ 'nifi.kerberos.spnego.principal'].replace('_HOST', _hostname_lowercase) if stack_support_nifi_jaas: nifi_service_principal = nifi_properties[ 'nifi.kerberos.service.principal'] nifi_service_keytab = nifi_properties[ 'nifi.kerberos.service.keytab.location'] nifi_jaas_conf_template = config['configurations']['nifi-jaas-conf'][ 'content'] nifi_jaas_conf = nifi_config_dir + "/nifi_jaas.conf" zookeeper_principal = default( "/configurations/zookeeper-env/zookeeper_principal_name", "zookeeper/[email protected]") zookeeper_principal_primary = get_bare_principal(zookeeper_principal) # ranger host # E.g., 2.3 stack_version_unformatted = config['clusterLevelParams']['stack_version'] stack_version_formatted = format_stack_version(stack_version_unformatted) stack_supports_ranger_kerberos = stack_version_formatted and check_stack_feature( StackFeature.RANGER_KERBEROS_SUPPORT, stack_version_formatted) stack_supports_ranger_audit_db = stack_version_formatted and check_stack_feature( StackFeature.RANGER_AUDIT_DB_SUPPORT, stack_version_formatted) ranger_admin_hosts = default("/clusterHostInfo/ranger_admin_hosts", []) has_ranger_admin = not len(ranger_admin_hosts) == 0 xml_configurations_supported = config['configurations']['ranger-env'][ 'xml_configurations_supported']
kafka_env_sh_template = config['configurations']['kafka-env']['content'] kafka_home = os.path.join(stack_root, "current", "kafka-broker") kafka_conf_dir = os.path.join(kafka_home, "config") kafka_zk_endpoint = default("/configurations/kafka-broker/zookeeper.connect", None) kafka_kerberos_enabled = (('security.inter.broker.protocol' in config['configurations']['kafka-broker']) and ((config['configurations']['kafka-broker']['security.inter.broker.protocol'] == "PLAINTEXTSASL") or (config['configurations']['kafka-broker']['security.inter.broker.protocol'] == "SASL_PLAINTEXT"))) if security_enabled and stack_version_formatted != "" and 'kafka_principal_name' in config['configurations']['kafka-env'] \ and check_stack_feature(StackFeature.KAFKA_KERBEROS, stack_version_formatted): _hostname_lowercase = config['hostname'].lower() _kafka_principal_name = config['configurations']['kafka-env']['kafka_principal_name'] kafka_jaas_principal = _kafka_principal_name.replace('_HOST', _hostname_lowercase) kafka_keytab_path = config['configurations']['kafka-env']['kafka_keytab'] kafka_bare_jaas_principal = get_bare_principal(_kafka_principal_name) kafka_kerberos_params = "-Djava.security.auth.login.config={0}/kafka_jaas.conf".format(kafka_conf_dir) else: kafka_kerberos_params = '' kafka_jaas_principal = None kafka_keytab_path = None namenode_host = set(default("/clusterHostInfo/namenode_host", [])) has_namenode = not len(namenode_host) == 0 # ranger altas plugin section start # ranger host ranger_admin_hosts = default("/clusterHostInfo/ranger_admin_hosts", []) has_ranger_admin = not len(ranger_admin_hosts) == 0
kafka_env_sh_template = config['configurations']['kafka-env']['content'] kafka_home = os.path.join(stack_root, "current", "kafka-broker") kafka_conf_dir = os.path.join(kafka_home, "config") kafka_zk_endpoint = default("/configurations/kafka-broker/zookeeper.connect", None) kafka_kerberos_enabled = (('security.inter.broker.protocol' in config['configurations']['kafka-broker']) and ((config['configurations']['kafka-broker']['security.inter.broker.protocol'] == "PLAINTEXTSASL") or (config['configurations']['kafka-broker']['security.inter.broker.protocol'] == "SASL_PLAINTEXT"))) if security_enabled and stack_version_formatted != "" and 'kafka_principal_name' in config['configurations']['kafka-env'] \ and check_stack_feature(StackFeature.KAFKA_KERBEROS, stack_version_formatted): _hostname_lowercase = config['agentLevelParams']['hostname'].lower() _kafka_principal_name = config['configurations']['kafka-env']['kafka_principal_name'] kafka_jaas_principal = _kafka_principal_name.replace('_HOST', _hostname_lowercase) kafka_keytab_path = config['configurations']['kafka-env']['kafka_keytab'] kafka_bare_jaas_principal = get_bare_principal(_kafka_principal_name) kafka_kerberos_params = "-Djava.security.auth.login.config={0}/kafka_jaas.conf".format(kafka_conf_dir) else: kafka_kerberos_params = '' kafka_jaas_principal = None kafka_keytab_path = None namenode_host = set(default("/clusterHostInfo/namenode_hosts", [])) has_namenode = not len(namenode_host) == 0 upgrade_direction = default("/commandParams/upgrade_direction", None) # ranger altas plugin section start # ranger host ranger_admin_hosts = default("/clusterHostInfo/ranger_admin_hosts", []) has_ranger_admin = not len(ranger_admin_hosts) == 0