001    /**
002    * Licensed to the Apache Software Foundation (ASF) under one
003    * or more contributor license agreements.  See the NOTICE file
004    * distributed with this work for additional information
005    * regarding copyright ownership.  The ASF licenses this file
006    * to you under the Apache License, Version 2.0 (the
007    * "License"); you may not use this file except in compliance
008    * with the License.  You may obtain a copy of the License at
009    *
010    *     http://www.apache.org/licenses/LICENSE-2.0
011    *
012    * Unless required by applicable law or agreed to in writing, software
013    * distributed under the License is distributed on an "AS IS" BASIS,
014    * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
015    * See the License for the specific language governing permissions and
016    * limitations under the License.
017    */
018    
019    package org.apache.hadoop.yarn.security.client;
020    
021    import java.util.Collection;
022    
023    import org.apache.commons.logging.Log;
024    import org.apache.commons.logging.LogFactory;
025    import org.apache.hadoop.classification.InterfaceAudience.Public;
026    import org.apache.hadoop.classification.InterfaceStability.Stable;
027    import org.apache.hadoop.io.Text;
028    import org.apache.hadoop.security.token.Token;
029    import org.apache.hadoop.security.token.TokenIdentifier;
030    import org.apache.hadoop.security.token.TokenSelector;
031    
032    @Public
033    @Stable
034    public class RMDelegationTokenSelector implements
035        TokenSelector<RMDelegationTokenIdentifier> {
036    
037      private static final Log LOG = LogFactory
038          .getLog(RMDelegationTokenSelector.class);
039    
040      private boolean checkService(Text service,
041          Token<? extends TokenIdentifier> token) {
042        if (service == null || token.getService() == null) {
043          return false;
044        }
045        return token.getService().toString().contains(service.toString());
046      }
047    
048      @SuppressWarnings("unchecked")
049      public Token<RMDelegationTokenIdentifier> selectToken(Text service,
050          Collection<Token<? extends TokenIdentifier>> tokens) {
051        if (service == null) {
052          return null;
053        }
054        LOG.debug("Looking for a token with service " + service.toString());
055        for (Token<? extends TokenIdentifier> token : tokens) {
056          LOG.debug("Token kind is " + token.getKind().toString()
057              + " and the token's service name is " + token.getService());
058          if (RMDelegationTokenIdentifier.KIND_NAME.equals(token.getKind())
059              && checkService(service, token)) {
060            return (Token<RMDelegationTokenIdentifier>) token;
061          }
062        }
063        return null;
064      }
065    
066    }