|
|
@@ -0,0 +1,54 @@
|
|
|
+{
|
|
|
+ "services": [
|
|
|
+ {
|
|
|
+ "name": "KNOX",
|
|
|
+ "components": [
|
|
|
+ {
|
|
|
+ "name": "KNOX_GATEWAY",
|
|
|
+ "identities": [
|
|
|
+ {
|
|
|
+ "name": "knox_principal",
|
|
|
+ "principal": {
|
|
|
+ "value": "${knox-env/knox_user}/_HOST@${realm}",
|
|
|
+ "configuration": "knox-env/knox_principal_name"
|
|
|
+ },
|
|
|
+ "keytab": {
|
|
|
+ "file": "${keytab_dir}/knox.service.keytab",
|
|
|
+ "owner": {
|
|
|
+ "name": "${knox-env/knox_user}",
|
|
|
+ "access": "r"
|
|
|
+ },
|
|
|
+ "group": {
|
|
|
+ "name": "${cluster-env/user_group}",
|
|
|
+ "access": ""
|
|
|
+ },
|
|
|
+ "configuration": "knox-env/knox_keytab_path"
|
|
|
+ }
|
|
|
+ }
|
|
|
+ ],
|
|
|
+ "configurations": [
|
|
|
+ {
|
|
|
+ "gateway-site": {
|
|
|
+ "gateway.hadoop.kerberos.secured": "true",
|
|
|
+ "java.security.krb5.conf": "/etc/krb5.conf"
|
|
|
+ },
|
|
|
+ "core-site": {
|
|
|
+ "hadoop.proxyuser.knox.groups": "${hadoop-env/proxyuser_group}",
|
|
|
+ "hadoop.proxyuser.knox.hosts": "${host}"
|
|
|
+ },
|
|
|
+ "webhcat-site": {
|
|
|
+ "webhcat.proxyuser.knox.groups": "${hadoop-env/proxyuser_group}",
|
|
|
+ "webhcat.proxyuser.knox.hosts": "${host}"
|
|
|
+ },
|
|
|
+ "oozie-site": {
|
|
|
+ "oozie.service.ProxyUserService.proxyuser.knox.groups": "${hadoop-env/proxyuser_group}",
|
|
|
+ "oozie.service.ProxyUserService.proxyuser.knox.hosts": "${host}"
|
|
|
+ }
|
|
|
+ }
|
|
|
+ ]
|
|
|
+ }
|
|
|
+ ]
|
|
|
+ }
|
|
|
+ ]
|
|
|
+}
|
|
|
+
|
Jaimin Jetly