-
Notifications
You must be signed in to change notification settings - Fork 0
/
Ranger.py
232 lines (177 loc) · 7.88 KB
/
Ranger.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
from __future__ import print_function
#exports
__all__ = ('Ranger',)
import json
from Common import get_input
from HadoopUtil import HadoopUtil, CmdTuple, STATUS_NOCONTENT
class Ranger(HadoopUtil):
rootpath = "/service/public/api"
commands = HadoopUtil.commands + [
"",
CmdTuple("list repository", "List all repositories"),
CmdTuple("list policy", "List all policies"),
CmdTuple("list repository <id>", "Show a repository"),
CmdTuple("list policy <id>", "Show a policy"),
CmdTuple("create repository <data>", "Create a repository"),
CmdTuple("create policy <data>", "Create a policy"),
CmdTuple("update repository <id> <data>", "Update a repository"),
CmdTuple("update policy <id> <data>", "Update a policy"),
CmdTuple("delete repository <id>", "Delete a repository"),
CmdTuple("delete policy <id>", "Delete a policy"),
]
def __init__(self, host, user, passwd):
HadoopUtil.__init__(self, "http", host, 6080, user, passwd)
@property
def banner(self):
return "Ranger Shell"
@property
def weburl(self):
return self.baseurl + self.rootpath
@property
def repourl(self):
return self.weburl + "/repository"
@property
def policyurl(self):
return self.weburl + "/policy"
def Get(self, url):
return super(Ranger, self).Get(url, auth=self.auth)
def Delete(self, url):
return super(Ranger, self).Delete(url, text=True, expected=(STATUS_NOCONTENT,))
def Post(self, url, data):
return super(Ranger, self).Post(url, data=data,
headers={"Content-Type": "Application/json"})
def Put(self, url, auth, data, curl=False):
return super(Ranger, self).Put(url, data=data,
headers={"Content-Type": "Application/json"})
@staticmethod
def get_permission_map(*perms):
to_list = lambda s: s.replace(",", " ").split()
print("Please input a permission map:")
permlist = "/".join(perms)
perm_map ={"userList" : get_input("User(s)",
hint="comma seperated list",
default="",
convert=to_list),
"groupList" : get_input("Group(s)",
hint="comma seperated list",
default="",
convert=to_list),
"permList": get_input("Permissions",
hint="comma seperated list of %s" % permlist,
default="",
convert=to_list)
}
return perm_map
# command handers
def do_list(self, data):
params = data.split() + [None]
if params[0] == 'repository':
self.do_echo(self.get_repository(params[1]))
elif params[0] == 'policy':
self.do_echo(self.get_policy(params[1]))
else:
self.error("Invalid parameter '%s'" % data)
def do_create(self, data):
params = data.split() + [None]
if not (params[0] in ("repository", "policy")):
self.error("Invalid parameter '%s'" % params[0])
return
try:
handler_name = "create_%s_%s" % (params[1], params[0])
handler = getattr(self, handler_name)
handler()
except AttributeError:
self.error("Invalid parameter '%s'%" % params[1])
def do_update(self, data):
params = data.split() + [None]
if not (params[0] in ("repository", "policy")):
self.error("Invalid parameter '%s'" % params[0])
return
if params[1] is not None:
fetcher = getattr(self, "get_" + params[0])
olddata = fetcher(params[1])
if str(olddata.get("id", None)) != params[1]:
self.error("Invalid repository/policy id: '%s'" % params[1])
return
update = {"repository" : self.update_repository,
"policy" : self.update_policy
}.get(params[0])
update(olddata)
def do_delete(self, data):
params = data.split() + [None]
if params[0] == 'repository':
self.do_echo(self.delete_repository(params[1]))
elif params[0] == 'policy':
self.do_echo(self.delete_policy(params[1]))
else:
self.error("Invalid parameter '%s'" % params[0])
# utilities
def get_repository(self, service_id=None):
url = self.repourl if service_id is None \
else "%s/%s" % (self.repourl, service_id)
return self.Get(url)
def get_policy(self, policy_id=None):
url = self.policyurl if policy_id in (None, "None") \
else "%s/%s" % (self.policyurl, policy_id)
return self.Get(url)
def delete_repository(self, repo_id):
return self.Delete("%s/%s" % (self.repourl, repo_id))
def delete_policy(self, policy_id):
return self.Delete("%s/%s" % (self.policyurl, policy_id))
def update_repository(self, repo_data):
print(repo_data)
def update_policy(self, policy_data):
print(policy_data)
def create_hbase_policy(self):
print("Creating hbase policy, please input")
def trueOrfalse(input_str):
if input_str.lower() in ("yes", "y"):
return True
else:
return False
try:
policy_data = {
"repositoryType" : "hbase",
"repositoryName" : get_input("Repository name"),
"policyName" : get_input("Policy name"),
"tables" : get_input("Table name(s)",
hint="comma seperated list",
default="*"),
"columnFamilies" : get_input("Column familie(s)",
hint="comma seperated list",
default="*"),
"columns" : get_input("Column(s)",
hint="comma seperated list",
default="*"),
"description": get_input("Description", default=""),
"isEnabled": get_input("Enabled?", hint="Yes/No",
default="Yes", convert=trueOrfalse),
"isAuditEnabled":get_input("Auditable?", hint="Yes/No",
default="Yes", convert=trueOrfalse),
"isRecursive": get_input("Recursive?", hint="Yes/No",
default="No", convert=trueOrfalse),
"tableType": "Inclusion",
"columnType": "Inclusion",
}
permmap_list = []
while True:
perm_map = self.get_permission_map("Read", "Write",
"Create", "Admin")
if len(perm_map["permList"]) == 0:
break
permmap_list.append(perm_map)
policy_data["permMapList"] = permmap_list
self.do_echo( self.__create_policy(policy_data))
except KeyboardInterrupt:
print("Control-C")
except Exception as e:
print(e)
def __create_policy(self, policy_data):
return self.Post(self.policyurl, data=json.dumps(policy_data))
def __update_policy(self, policy_id, policy_data):
return self.Put("%s/%s" % (self.policyurl, policy_id),
data=json.dumps(policy_data))
#
# ---- main ----
if __name__ == "__main__":
print("Ranger")