| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120 |
- {
- "services": [
- {
- "name": "STORM",
- "identities": [
- {
- "name": "/spnego"
- },
- {
- "name": "/smokeuser"
- },
- {
- "name": "storm_components",
- "principal": {
- "value": "${storm-env/storm_user}-${cluster_name|toLower()}@${realm}",
- "type": "user",
- "configuration": "storm-env/storm_principal_name"
- },
- "keytab": {
- "file": "${keytab_dir}/storm.headless.keytab",
- "owner": {
- "name": "${storm-env/storm_user}",
- "access": "r"
- },
- "group": {
- "name": "${cluster-env/user_group}",
- "access": ""
- },
- "configuration": "storm-env/storm_keytab"
- }
- }
- ],
- "configurations": [
- {
- "storm-site": {
- "nimbus.authorizer": "backtype.storm.security.auth.authorizer.SimpleACLAuthorizer",
- "drpc.authorizer": "backtype.storm.security.auth.authorizer.DRPCSimpleACLAuthorizer",
- "ui.filter": "org.apache.hadoop.security.authentication.server.AuthenticationFilter",
- "storm.principal.tolocal": "backtype.storm.security.auth.KerberosPrincipalToLocal",
- "supervisor.enable": "true",
- "storm.zookeeper.superACL": "sasl:{{storm_bare_jaas_principal}}",
- "java.security.auth.login.config": "{{conf_dir}}/storm_jaas.conf",
- "nimbus.admins": "['{{storm_bare_jaas_principal}}']",
- "nimbus.supervisor.users": "['{{storm_bare_jaas_principal}}']",
- "ui.filter.params": "{'type': 'kerberos', 'kerberos.principal': '{{storm_ui_jaas_principal}}', 'kerberos.keytab': '{{storm_ui_keytab_path}}', 'kerberos.name.rules': 'DEFAULT'}"
- }
- }
- ],
- "components": [
- {
- "name": "STORM_UI_SERVER",
- "identities": [
- {
- "name": "/spnego",
- "principal": {
- "configuration": "storm-env/storm_ui_principal_name"
- },
- "keytab": {
- "configuration": "storm-env/storm_ui_keytab"
- }
- }
- ]
- },
- {
- "name": "NIMBUS",
- "identities": [
- {
- "name": "nimbus_server",
- "principal": {
- "value": "nimbus/_HOST@${realm}",
- "type": "service",
- "configuration": "storm-env/nimbus_principal_name"
- },
- "keytab": {
- "file": "${keytab_dir}/nimbus.service.keytab",
- "owner": {
- "name": "${storm-env/storm_user}",
- "access": "r"
- },
- "group": {
- "name": "${cluster-env/user_group}",
- "access": ""
- },
- "configuration": "storm-env/nimbus_keytab"
- }
- }
- ]
- },
- {
- "name": "DRPC_SERVER",
- "identities": [
- {
- "name": "nimbus_server",
- "principal": {
- "value": "nimbus/_HOST@${realm}",
- "type": "service",
- "configuration": "storm-env/nimbus_principal_name"
- },
- "keytab": {
- "file": "${keytab_dir}/nimbus.service.keytab",
- "owner": {
- "name": "${storm-env/storm_user}",
- "access": "r"
- },
- "group": {
- "name": "${cluster-env/user_group}",
- "access": ""
- },
- "configuration": "storm-env/nimbus_keytab"
- }
- }
- ]
- },
- {
- "name" : "SUPERVISOR"
- }
- ]
- }
- ]
- }
|
