tez-plugins/tez-yarn-timeline-history-with-acls/src/main/java/org/apache/tez/dag/history/ats/acls/ATSHistoryACLPolicyManager.java [57:113]: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - private void initializeTimelineClient() { if (this.conf == null) { throw new TezUncheckedException("ATSACLManager not configured"); } if (timelineClient != null) { this.timelineClient.stop(); this.timelineClient = null; } if (conf.getBoolean(YarnConfiguration.TIMELINE_SERVICE_ENABLED, YarnConfiguration.DEFAULT_TIMELINE_SERVICE_ENABLED)) { this.timelineClient = TimelineClient.createTimelineClient(); this.timelineClient.init(this.conf); this.timelineClient.start(); } else { this.timelineClient = null; if (conf.get(TezConfiguration.TEZ_HISTORY_LOGGING_SERVICE_CLASS, "") .equals(atsHistoryLoggingServiceClassName)) { LOG.warn(atsHistoryLoggingServiceClassName + " is disabled due to Timeline Service being disabled, " + YarnConfiguration.TIMELINE_SERVICE_ENABLED + " set to false"); } } try { this.user = UserGroupInformation.getCurrentUser().getShortUserName(); } catch (IOException e) { throw new TezUncheckedException("Unable to get Current User UGI", e); } } private String getMergedViewACLs(ACLConfigurationParser parser, DAGAccessControls dagAccessControls) { Map> allowedUsers = parser.getAllowedUsers(); Map> allowedGroups = parser.getAllowedGroups(); Set viewUsers = new HashSet(); viewUsers.add(user); if (allowedUsers.containsKey(ACLType.AM_VIEW_ACL)) { viewUsers.addAll(allowedUsers.get(ACLType.AM_VIEW_ACL)); } if (dagAccessControls != null && dagAccessControls.getUsersWithViewACLs() != null) { viewUsers.addAll(dagAccessControls.getUsersWithViewACLs()); } if (viewUsers.contains(ACLManager.WILDCARD_ACL_VALUE)) { return ACLManager.WILDCARD_ACL_VALUE; } Set viewGroups = new HashSet(); if (allowedGroups.containsKey(ACLType.AM_VIEW_ACL)) { viewGroups.addAll(allowedGroups.get(ACLType.AM_VIEW_ACL)); } if (dagAccessControls != null && dagAccessControls.getGroupsWithViewACLs() != null) { viewGroups.addAll(dagAccessControls.getGroupsWithViewACLs()); } return ACLManager.toCommaSeparatedString(viewUsers) + " " + ACLManager.toCommaSeparatedString(viewGroups); - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - tez-plugins/tez-yarn-timeline-history-with-fs/src/main/java/org/apache/tez/dag/history/ats/acls/ATSV15HistoryACLPolicyManager.java [58:114]: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - private void initializeTimelineClient() { if (this.conf == null) { throw new TezUncheckedException("ATSACLManager not configured"); } if (timelineClient != null) { this.timelineClient.stop(); this.timelineClient = null; } if (conf.getBoolean(YarnConfiguration.TIMELINE_SERVICE_ENABLED, YarnConfiguration.DEFAULT_TIMELINE_SERVICE_ENABLED)) { this.timelineClient = TimelineClient.createTimelineClient(); this.timelineClient.init(this.conf); this.timelineClient.start(); } else { this.timelineClient = null; if (conf.get(TezConfiguration.TEZ_HISTORY_LOGGING_SERVICE_CLASS, "") .equals(atsHistoryLoggingServiceClassName)) { LOG.warn(atsHistoryLoggingServiceClassName + " is disabled due to Timeline Service being disabled, " + YarnConfiguration.TIMELINE_SERVICE_ENABLED + " set to false"); } } try { this.user = UserGroupInformation.getCurrentUser().getShortUserName(); } catch (IOException e) { throw new TezUncheckedException("Unable to get Current User UGI", e); } } private String getMergedViewACLs(ACLConfigurationParser parser, DAGAccessControls dagAccessControls) { Map> allowedUsers = parser.getAllowedUsers(); Map> allowedGroups = parser.getAllowedGroups(); Set viewUsers = new HashSet(); viewUsers.add(user); if (allowedUsers.containsKey(ACLType.AM_VIEW_ACL)) { viewUsers.addAll(allowedUsers.get(ACLType.AM_VIEW_ACL)); } if (dagAccessControls != null && dagAccessControls.getUsersWithViewACLs() != null) { viewUsers.addAll(dagAccessControls.getUsersWithViewACLs()); } if (viewUsers.contains(ACLManager.WILDCARD_ACL_VALUE)) { return ACLManager.WILDCARD_ACL_VALUE; } Set viewGroups = new HashSet(); if (allowedGroups.containsKey(ACLType.AM_VIEW_ACL)) { viewGroups.addAll(allowedGroups.get(ACLType.AM_VIEW_ACL)); } if (dagAccessControls != null && dagAccessControls.getGroupsWithViewACLs() != null) { viewGroups.addAll(dagAccessControls.getGroupsWithViewACLs()); } return ACLManager.toCommaSeparatedString(viewUsers) + " " + ACLManager.toCommaSeparatedString(viewGroups); - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -