11 年之前 · 8ff1e60f18
--- a/ambari-server/src/main/resources/stacks/HDP/2.0.6/services/HIVE/package/scripts/hive.py
+++ b/ambari-server/src/main/resources/stacks/HDP/2.0.6/services/HIVE/package/scripts/hive.py
@@ -81,7 +81,7 @@ def hive(name=None):
 
				   elif name == 'hiveserver2':
			
 
				     File(params.start_hiveserver2_path,
			
 
				          mode=0755,
			
 
				-         content=StaticFile('startHiveserver2.sh')
			
 
				+         content=Template(format('{start_hiveserver2_script}'))
			
 
				     )
			
 
				 
			
 
				   if name != "client":
			
--- a/ambari-server/src/main/resources/stacks/HDP/2.0.6/services/HIVE/package/scripts/params.py
+++ b/ambari-server/src/main/resources/stacks/HDP/2.0.6/services/HIVE/package/scripts/params.py
@@ -77,7 +77,7 @@ hive_pid = status_params.hive_pid
 
				 hive_database_name = config['configurations']['global']['hive_database_name']
			
 
				 
			
 
				 #Starting hiveserver2
			
 
				-start_hiveserver2_script = 'startHiveserver2.sh'
			
 
				+start_hiveserver2_script = 'startHiveserver2.sh.j2'
			
 
				 
			
 
				 hadoop_home = '/usr'
			
 
				 
			
@@ -172,6 +172,9 @@ tez_local_api_jars = '/usr/lib/tez/tez*.jar'
 
				 tez_local_lib_jars = '/usr/lib/tez/lib/*.jar'
			
 
				 tez_user = config['configurations']['global']['tez_user']
			
 
				 
			
 
				+# Hive security
			
 
				+hive_authorization_enabled = config['configurations']['hive-site']['hive.security.authorization.enabled']
			
 
				+
			
 
				 import functools
			
 
				 #create partial functions with common arguments for every HdfsDirectory call
			
 
				 #to create hdfs directory we need to call params.HdfsDirectory in code
			
--- a/ambari-server/src/main/resources/stacks/HDP/2.0.6/services/HIVE/package/templates/startHiveserver2.sh.j2
+++ b/ambari-server/src/main/resources/stacks/HDP/2.0.6/services/HIVE/package/templates/startHiveserver2.sh.j2
@@ -18,5 +18,12 @@
 
				 # under the License.
			
 
				 #
			
 
				 #
			
 
				-HIVE_CONF_DIR=$4 /usr/lib/hive/bin/hiveserver2 -hiveconf hive.metastore.uris=' ' > $1 2> $2 &
			
 
				+
			
 
				+HIVE_SERVER2_OPTS=" -hiveconf hive.metastore.uris=\" \" "
			
 
				+{% if hive_authorization_enabled == True and str(hdp_stack_version).startswith('2.1') %}
			
 
				+# HiveServer 2 -hiveconf options
			
 
				+HIVE_SERVER2_OPTS="${HIVE_SERVER2_OPTS} -hiveconf hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateUserAuthenticator -hiveconf hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory "
			
 
				+{% endif %}
			
 
				+
			
 
				+HIVE_CONF_DIR=$4 /usr/lib/hive/bin/hiveserver2 ${HIVE_SERVER2_OPTS} > $1 2> $2 &
			
 
				 echo $!|cat>$3
			
--- a/ambari-server/src/main/resources/stacks/HDP/2.1/services/HIVE/configuration/hive-site.xml
+++ b/ambari-server/src/main/resources/stacks/HDP/2.1/services/HIVE/configuration/hive-site.xml
@@ -108,7 +108,7 @@ limitations under the License.
 
				 
			
 
				   <property>
			
 
				     <name>hive.security.authorization.enabled</name>
			
 
				-    <value>false</value>
			
 
				+    <value>true</value>
			
 
				     <description>enable or disable the hive client authorization</description>
			
 
				   </property>
			
 
				 
			
@@ -133,7 +133,7 @@ limitations under the License.
 
				 
			
 
				   <property>
			
 
				     <name>hive.server2.enable.doAs</name>
			
 
				-    <value>true</value>
			
 
				+    <value>false</value>
			
 
				     <description>Impersonate the connected user. By default HiveServer2 performs the query processing as the user who
			
 
				       submitted the query. But if the parameter is set to false, the query will run as the user that the hiveserver2
			
 
				       process runs as.
			
@@ -471,5 +471,10 @@ limitations under the License.
 
				     <description>Number of aborted transactions involving a particular table or partition before major compaction is initiated.</description>
			
 
				   </property>
			
 
				 
			
 
				+  <property>
			
 
				+    <name>hive.users.in.admin.role</name>
			
 
				+    <value></value>
			
 
				+    <description>If user is specified as value of this config, that user has superuser privileges in DB</description>
			
 
				+  </property>
			
 
				 
			
 
				 </configuration>
			
--- a/ambari-server/src/test/python/stacks/2.0.6/HIVE/test_hive_server.py
+++ b/ambari-server/src/test/python/stacks/2.0.6/HIVE/test_hive_server.py
@@ -259,7 +259,7 @@ class TestHiveServer(RMFTestCase):
 
				       not_if = '[ -f DBConnectionVerification.jar]',
			
 
				     )
			
 
				     self.assertResourceCalled('File', '/tmp/start_hiveserver2_script',
			
 
				-      content = StaticFile('startHiveserver2.sh'),
			
 
				+      content = Template('startHiveserver2.sh.j2'),
			
 
				       mode = 0755,
			
 
				     )
			
 
				     self.assertResourceCalled('Directory', '/var/run/hive',
			
@@ -352,7 +352,7 @@ class TestHiveServer(RMFTestCase):
 
				       not_if = '[ -f DBConnectionVerification.jar]',
			
 
				     )
			
 
				     self.assertResourceCalled('File', '/tmp/start_hiveserver2_script',
			
 
				-      content = StaticFile('startHiveserver2.sh'),
			
 
				+      content = Template('startHiveserver2.sh.j2'),
			
 
				       mode = 0755,
			
 
				     )
			
 
				     self.assertResourceCalled('Directory', '/var/run/hive',