Menu

Ranger with Ambari Configure

module.exports = ->
  service = migration.call @, service, 'ryba/ambari/hdfranger', ['ryba', 'ambari', 'hdfranger'], require('nikita/lib/misc').merge require('.').use,
    ssl: key: ['ssl']
    krb5_client: key: ['krb5_client']
    java: key: ['java']
    hdf: key: ['ryba', 'hdf']
    ambari_repo: key: ['ryba', 'ambari', 'repo']
    hadoop_core: key: ['ryba']
  @config.ryba ?= {}
  @config.ryba.ambari ?= {}
  options = @config.ryba.ambari.hdfranger = service.options

Environment

  options.conf_dir ?= '/etc/ranger/conf'

User and Groups

  # Group
  options.group = name: options.group if typeof options.group is 'string'
  options.group ?= {}
  options.group.name ?= 'ranger'
  options.group.system ?= true
  # User
  options.user = name: options.user if typeof options.user is 'string'
  options.user ?= {}
  options.user.name ?= 'ranger'
  options.user.gid = options.group.name
  options.user.system ?= true
  options.user.comment ?= 'Ranger User'
  options.user.home ?= '/var/lib/ranger'

Ranger

https://community.hortonworks.com/articles/81184/understanding-the-initial-admin-identity-access-po.html

  options.ssl = merge {}, service.use.ssl?[0]?.options, options.ssl
  options.ssl.enabled ?= !!service.use.ssl
  options.ssl.certs = {}
  # options.ssl.truststore ?= {}
  # options.ssl.keystore ?= {}
  if options.ssl.enabled
    # options.ssl.cert = @config.ssl.cert
    # options.ssl.key = @config.ssl.key
    # options.ssl.cacert = @config.ssl.cacert
    for srv in service.use.ssl
      options.ssl.certs[srv.node.shortname] ?= {}
      options.ssl.certs[srv.node.shortname] = srv.options.cert
    throw Error 'Required Property: truststore.password' unless options.ssl.truststore.password
    options.ssl.truststore.caname ?= 'hadoop_root_ca'
    options.ssl.truststore.type ?= 'jks'
    options.ssl.truststore.target = "#{options.conf_dir}/truststore.jks"
    throw Error "Invalid Truststore Type: #{truststore.type}" unless options.ssl.truststore.type in ['jks', 'jceks', 'pkcs12']
    options.ssl.keystore.target = "#{options.conf_dir}/keystore.jks"
    throw Error 'Required Property: keystore.password' unless options.ssl.keystore.password
    throw Error 'Required Property: keystore.keypass' unless options.ssl.keystore.keypass

Dependencies

{merge} = require '@nikitajs/core/lib/misc'
migration = require 'masson/lib/migration'

Quick Navigation

What is RybaGetting StartedModules

Contribute

GitHubIssue TrackerLicense

Suggestions, problems, feedback?

Deploying Hadoop in a secured multi-tenant mode take a lot of energy. Support this community effort with your contributions. Review the documentation, test Ryba in multiple environments or sponsor new features.