ホーム エクスプローラ ヘルプ
登録 サインイン
apache
/
hadoop
同期ミラー https://github.com/apache/hadoop.git
2
0
フォーク 1
ファイル 課題 0 Wiki
ツリー: 1090b270b8
ブランチ タグ
hadoop
/
common
/
conf
/
hadoop-policy.xml.template

hadoop-policy.xml.template 4.5 KB
履歴 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. <?xml version="1.0"?>
    2. 

  2. <?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
    3. 

  3. 

  4. <!-- Put site-specific property overrides in this file. -->
    5. 

  5. 

  6. <configuration>
    7. 

  7.   <property>
    8. 

  8.     <name>security.client.protocol.acl</name>
    9. 

  9.     <value>*</value>
    10. 

  10.     <description>ACL for ClientProtocol, which is used by user code 
    11. 

  11.     via the DistributedFileSystem. 
    12. 

  12.     The ACL is a comma-separated list of user and group names. The user and 
    13. 

  13.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    14. 

  14.     A special value of "*" means all users are allowed.</description>
    15. 

  15.   </property>
    16. 

  16. 

  17.   <property>
    18. 

  18.     <name>security.client.datanode.protocol.acl</name>
    19. 

  19.     <value>*</value>
    20. 

  20.     <description>ACL for ClientDatanodeProtocol, the client-to-datanode protocol 
    21. 

  21.     for block recovery.
    22. 

  22.     The ACL is a comma-separated list of user and group names. The user and 
    23. 

  23.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    24. 

  24.     A special value of "*" means all users are allowed.</description>
    25. 

  25.   </property>
    26. 

  26. 

  27.   <property>
    28. 

  28.     <name>security.datanode.protocol.acl</name>
    29. 

  29.     <value>*</value>
    30. 

  30.     <description>ACL for DatanodeProtocol, which is used by datanodes to 
    31. 

  31.     communicate with the namenode.
    32. 

  32.     The ACL is a comma-separated list of user and group names. The user and 
    33. 

  33.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    34. 

  34.     A special value of "*" means all users are allowed.</description>
    35. 

  35.   </property>
    36. 

  36. 

  37.   <property>
    38. 

  38.     <name>security.inter.datanode.protocol.acl</name>
    39. 

  39.     <value>*</value>
    40. 

  40.     <description>ACL for InterDatanodeProtocol, the inter-datanode protocol
    41. 

  41.     for updating generation timestamp.
    42. 

  42.     The ACL is a comma-separated list of user and group names. The user and 
    43. 

  43.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    44. 

  44.     A special value of "*" means all users are allowed.</description>
    45. 

  45.   </property>
    46. 

  46. 

  47.   <property>
    48. 

  48.     <name>security.namenode.protocol.acl</name>
    49. 

  49.     <value>*</value>
    50. 

  50.     <description>ACL for NamenodeProtocol, the protocol used by the secondary
    51. 

  51.     namenode to communicate with the namenode.
    52. 

  52.     The ACL is a comma-separated list of user and group names. The user and 
    53. 

  53.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    54. 

  54.     A special value of "*" means all users are allowed.</description>
    55. 

  55.   </property>
    56. 

  56. 

  57.   <property>
    58. 

  58.     <name>security.inter.tracker.protocol.acl</name>
    59. 

  59.     <value>*</value>
    60. 

  60.     <description>ACL for InterTrackerProtocol, used by the tasktrackers to 
    61. 

  61.     communicate with the jobtracker.
    62. 

  62.     The ACL is a comma-separated list of user and group names. The user and 
    63. 

  63.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    64. 

  64.     A special value of "*" means all users are allowed.</description>
    65. 

  65.   </property>
    66. 

  66. 

  67.   <property>
    68. 

  68.     <name>security.job.submission.protocol.acl</name>
    69. 

  69.     <value>*</value>
    70. 

  70.     <description>ACL for JobSubmissionProtocol, used by job clients to 
    71. 

  71.     communciate with the jobtracker for job submission, querying job status etc.
    72. 

  72.     The ACL is a comma-separated list of user and group names. The user and 
    73. 

  73.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    74. 

  74.     A special value of "*" means all users are allowed.</description>
    75. 

  75.   </property>
    76. 

  76. 

  77.   <property>
    78. 

  78.     <name>security.task.umbilical.protocol.acl</name>
    79. 

  79.     <value>*</value>
    80. 

  80.     <description>ACL for TaskUmbilicalProtocol, used by the map and reduce 
    81. 

  81.     tasks to communicate with the parent tasktracker. 
    82. 

  82.     The ACL is a comma-separated list of user and group names. The user and 
    83. 

  83.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    84. 

  84.     A special value of "*" means all users are allowed.</description>
    85. 

  85.   </property>
    86. 

  86. 

  87.   <property>
    88. 

  88.     <name>security.refresh.policy.protocol.acl</name>
    89. 

  89.     <value>*</value>
    90. 

  90.     <description>ACL for RefreshAuthorizationPolicyProtocol, used by the 
    91. 

  91.     dfsadmin and mradmin commands to refresh the security policy in-effect. 
    92. 

  92.     The ACL is a comma-separated list of user and group names. The user and 
    93. 

  93.     group list is separated by a blank. For e.g. "alice,bob users,wheel". 
    94. 

  94.     A special value of "*" means all users are allowed.</description>
    95. 

  95.   </property>
    96. 

  96. 

  97.   <property>
    98. 

  98.     <name>security.admin.operations.protocol.acl</name>
    99. 

  99.     <value>*</value>
    100. 

  100.     <description>ACL for AdminOperationsProtocol, used by the mradmins commands
    101. 

  101.     to refresh queues and nodes at JobTracker. The ACL is a comma-separated list of 
    102. 

  102.     user and group names. The user and group list is separated by a blank. 
    103. 

  103.     For e.g. "alice,bob users,wheel". A special value of "*" means all users are 
    104. 

  104.     allowed.</description>
    105. 

  105.   </property>
    106. 

  106. </configuration>
    107.