in ambari-web/app/controllers/main/admin/security/add/step3.js [43:219]
loadStep: function(){
var configs = this.get('content.serviceConfigProperties');
var hosts = App.Host.find();
var result = [];
var componentsToDisplay = ['NAMENODE', 'SECONDARY_NAMENODE', 'DATANODE', 'JOBTRACKER', 'ZOOKEEPER_SERVER', 'HIVE_SERVER', 'TASKTRACKER',
'OOZIE_SERVER', 'NAGIOS_SERVER', 'HBASE_MASTER', 'HBASE_REGIONSERVER','HISTORYSERVER','RESOURCEMANAGER','NODEMANAGER','JOURNALNODE'];
var securityUsers = [];
if (!securityUsers || securityUsers.length < 1) { // Page could be refreshed in middle
securityUsers = this.getSecurityUsers();
}
var isHbaseInstalled = App.Service.find().findProperty('serviceName', 'HBASE');
var generalConfigs = configs.filterProperty('serviceName', 'GENERAL');
var hdfsConfigs = configs.filterProperty('serviceName', 'HDFS');
var realm = generalConfigs.findProperty('name', 'kerberos_domain').value;
var smokeUserId = securityUsers.findProperty('name', 'smokeuser').value;
var hdfsUserId = securityUsers.findProperty('name', 'hdfs_user').value;
var hbaseUserId = securityUsers.findProperty('name', 'hbase_user').value;
var mapredUserId = securityUsers.findProperty('name', 'mapred_user').value;
var yarnUserId = securityUsers.findProperty('name', 'yarn_user').value;
var hiveUserId = securityUsers.findProperty('name', 'hive_user').value;
var zkUserId = securityUsers.findProperty('name', 'zk_user').value;
var oozieUserId = securityUsers.findProperty('name', 'oozie_user').value;
var nagiosUserId = securityUsers.findProperty('name', 'nagios_user').value;
var hadoopGroupId = securityUsers.findProperty('name', 'user_group').value;
var smokeUser = smokeUserId + '@' + realm;
var hdfsUser = hdfsUserId + '@' + realm;
var hbaseUser = hbaseUserId + '@' + realm;
var smokeUserKeytabPath = generalConfigs.findProperty('name', 'smokeuser_keytab').value;
var hdfsUserKeytabPath = generalConfigs.findProperty('name', 'hdfs_user_keytab').value;
var hbaseUserKeytabPath = generalConfigs.findProperty('name', 'hbase_user_keytab').value;
var hadoopHttpPrincipal = hdfsConfigs.findProperty('name', 'hadoop_http_principal_name');
var hadoopHttpKeytabPath = hdfsConfigs.findProperty('name', 'hadoop_http_keytab').value;
var componentToOwnerMap = {
'NAMENODE': hdfsUserId,
'SECONDARY_NAMENODE': hdfsUserId,
'DATANODE': hdfsUserId,
'JOURNALNODE': hdfsUserId,
'TASKTRACKER': mapredUserId,
'JOBTRACKER': mapredUserId,
'HISTORYSERVER': mapredUserId,
'RESOURCEMANAGER':yarnUserId,
'NODEMANAGER':yarnUserId,
'ZOOKEEPER_SERVER': zkUserId,
'HIVE_SERVER': hiveUserId,
'OOZIE_SERVER': oozieUserId,
'NAGIOS_SERVER': nagiosUserId,
'HBASE_MASTER': hbaseUserId,
'HBASE_REGIONSERVER': hbaseUserId
};
var addedPrincipalsHost = {}; //Keys = host_principal, Value = 'true'
hosts.forEach(function (host) {
result.push({
host: host.get('hostName'),
component: Em.I18n.t('admin.addSecurity.user.smokeUser'),
principal: smokeUser,
keytabFile: stringUtils.getFileFromPath(smokeUserKeytabPath),
keytab: stringUtils.getPath(smokeUserKeytabPath),
owner: smokeUserId,
group: hadoopGroupId,
acl: '440'
});
result.push({
host: host.get('hostName'),
component: Em.I18n.t('admin.addSecurity.user.hdfsUser'),
principal: hdfsUser,
keytabFile: stringUtils.getFileFromPath(hdfsUserKeytabPath),
keytab: stringUtils.getPath(hdfsUserKeytabPath),
owner: hdfsUserId,
group: hadoopGroupId,
acl: '440'
});
if (isHbaseInstalled) {
result.push({
host: host.get('hostName'),
component: Em.I18n.t('admin.addSecurity.user.hbaseUser'),
principal: hbaseUser,
keytabFile: stringUtils.getFileFromPath(hbaseUserKeytabPath),
keytab: stringUtils.getPath(hbaseUserKeytabPath),
owner: hbaseUserId,
group: hadoopGroupId,
acl: '440'
});
}
if(host.get('hostComponents').someProperty('componentName', 'NAMENODE') ||
host.get('hostComponents').someProperty('componentName', 'SECONDARY_NAMENODE') || host.get('hostComponents').someProperty('componentName', 'JOURNALNODE')){
result.push({
host: host.get('hostName'),
component: Em.I18n.t('admin.addSecurity.hdfs.user.httpUser'),
principal: hadoopHttpPrincipal.value.replace('_HOST', host.get('hostName').toLowerCase()) + hadoopHttpPrincipal.unit,
keytabFile: stringUtils.getFileFromPath(hadoopHttpKeytabPath),
keytab: stringUtils.getPath(hadoopHttpKeytabPath),
owner: 'root',
group: hadoopGroupId,
acl: '440'
});
}
if (host.get('hostComponents').someProperty('componentName', 'WEBHCAT_SERVER')) {
var webHcatConfigs = configs.filterProperty('serviceName', 'WEBHCAT');
var webHCatHttpPrincipal = webHcatConfigs.findProperty('name', 'webHCat_http_principal_name');
var webHCatHttpKeytabPath = webHcatConfigs.findProperty('name', 'webhcat_http_keytab').value;
result.push({
host: host.get('hostName'),
component: Em.I18n.t('admin.addSecurity.webhcat.user.httpUser'),
principal: webHCatHttpPrincipal.value.replace('_HOST', host.get('hostName').toLowerCase()) + webHCatHttpPrincipal.unit,
keytabFile: stringUtils.getFileFromPath(webHCatHttpKeytabPath),
keytab: stringUtils.getPath(webHCatHttpKeytabPath),
owner: 'root',
group: hadoopGroupId,
acl: '440'
});
}
if (host.get('hostComponents').someProperty('componentName', 'OOZIE_SERVER')) {
var oozieConfigs = configs.filterProperty('serviceName', 'OOZIE');
var oozieHttpPrincipal = oozieConfigs.findProperty('name', 'oozie_http_principal_name');
var oozieHttpKeytabPath = oozieConfigs.findProperty('name', 'oozie_http_keytab').value;
result.push({
host: host.get('hostName'),
component: Em.I18n.t('admin.addSecurity.oozie.user.httpUser'),
principal: oozieHttpPrincipal.value.replace('_HOST', host.get('hostName').toLowerCase()) + oozieHttpPrincipal.unit,
keytabFile: stringUtils.getFileFromPath(oozieHttpKeytabPath),
keytab: stringUtils.getPath(oozieHttpKeytabPath),
owner: 'root',
group: hadoopGroupId,
acl: '440'
});
}
this.setComponentConfig(result,host,'HISTORYSERVER','MAPREDUCE2','jobhistory_http_principal_name','jobhistory_http_keytab',Em.I18n.t('admin.addSecurity.historyServer.user.httpUser'),hadoopGroupId);
this.setComponentConfig(result,host,'RESOURCEMANAGER','YARN','resourcemanager_http_principal_name','resourcemanager_http_keytab',Em.I18n.t('admin.addSecurity.rm.user.httpUser'),hadoopGroupId);
this.setComponentConfig(result,host,'NODEMANAGER','YARN','nodemanager_http_principal_name','nodemanager_http_keytab',Em.I18n.t('admin.addSecurity.nm.user.httpUser'),hadoopGroupId);
host.get('hostComponents').forEach(function(hostComponent){
if(componentsToDisplay.contains(hostComponent.get('componentName'))){
var serviceConfigs = configs.filterProperty('serviceName', hostComponent.get('service.serviceName'));
var principal, keytab;
serviceConfigs.forEach(function (config) {
if (config.component && config.component === hostComponent.get('componentName')) {
if (config.name.endsWith('_principal_name')) {
principal = config.value.replace('_HOST', host.get('hostName').toLowerCase()) + config.unit;
} else if (config.name.endsWith('_keytab') || config.name.endsWith('_keytab_path')) {
keytab = config.value;
}
} else if (config.components && config.components.contains(hostComponent.get('componentName'))) {
if (config.name.endsWith('_principal_name')) {
principal = config.value.replace('_HOST', host.get('hostName').toLowerCase()) + config.unit;
} else if (config.name.endsWith('_keytab') || config.name.endsWith('_keytab_path')) {
keytab = config.value;
}
}
});
var displayName = this.changeDisplayName(hostComponent.get('displayName'));
var key = host.get('hostName') + "--" + principal;
if (!addedPrincipalsHost[key]) {
var owner = componentToOwnerMap[hostComponent.get('componentName')];
if(!owner){
owner = '';
}
result.push({
host: host.get('hostName'),
component: displayName,
principal: principal,
keytabFile: stringUtils.getFileFromPath(keytab),
keytab: stringUtils.getPath(keytab),
owner: owner,
group: hadoopGroupId,
acl: '400'
});
addedPrincipalsHost[key] = true;
}
}
},this);
},this);
this.set('hostComponents', result);
},