public class AMRMProxyTokenSecretManager
extends org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.yarn.security.AMRMTokenIdentifier>
Constructor and Description |
---|
AMRMProxyTokenSecretManager(NMStateStoreService nmStateStoreService)
Create an
AMRMProxyTokenSecretManager . |
Modifier and Type | Method and Description |
---|---|
void |
activateNextMasterKey() |
void |
applicationMasterFinished(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId) |
org.apache.hadoop.security.token.Token<org.apache.hadoop.yarn.security.AMRMTokenIdentifier> |
createAndGetAMRMToken(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId) |
org.apache.hadoop.yarn.security.AMRMTokenIdentifier |
createIdentifier()
Creates an empty TokenId to be used for de-serializing an
AMRMTokenIdentifier by the RPC layer. |
org.apache.hadoop.yarn.server.security.MasterKeyData |
createNewMasterKey() |
protected byte[] |
createPassword(org.apache.hadoop.yarn.security.AMRMTokenIdentifier identifier) |
org.apache.hadoop.yarn.server.security.MasterKeyData |
getCurrentMasterKeyData() |
org.apache.hadoop.yarn.server.security.MasterKeyData |
getMasterKey() |
org.apache.hadoop.yarn.server.security.MasterKeyData |
getNextMasterKeyData() |
void |
init(org.apache.hadoop.conf.Configuration conf) |
void |
recover(NMStateStoreService.RecoveredAMRMProxyState state)
Recover secretManager from state store.
|
byte[] |
retrievePassword(org.apache.hadoop.yarn.security.AMRMTokenIdentifier identifier)
Retrieve the password for the given
AMRMTokenIdentifier . |
void |
rollMasterKey() |
void |
setNMStateStoreService(NMStateStoreService nmStateStoreService) |
void |
start() |
void |
stop() |
public AMRMProxyTokenSecretManager(NMStateStoreService nmStateStoreService)
AMRMProxyTokenSecretManager
.nmStateStoreService
- NM state storepublic void init(org.apache.hadoop.conf.Configuration conf)
public void start()
public void stop()
public void setNMStateStoreService(NMStateStoreService nmStateStoreService)
public void applicationMasterFinished(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId)
@InterfaceAudience.Private public void rollMasterKey()
@InterfaceAudience.Private public void activateNextMasterKey()
@InterfaceAudience.Private public org.apache.hadoop.yarn.server.security.MasterKeyData createNewMasterKey()
public org.apache.hadoop.security.token.Token<org.apache.hadoop.yarn.security.AMRMTokenIdentifier> createAndGetAMRMToken(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId)
public org.apache.hadoop.yarn.server.security.MasterKeyData getMasterKey()
public byte[] retrievePassword(org.apache.hadoop.yarn.security.AMRMTokenIdentifier identifier) throws org.apache.hadoop.security.token.SecretManager.InvalidToken
AMRMTokenIdentifier
. Used by
RPC layer to validate a remote AMRMTokenIdentifier
.retrievePassword
in class org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.yarn.security.AMRMTokenIdentifier>
org.apache.hadoop.security.token.SecretManager.InvalidToken
public org.apache.hadoop.yarn.security.AMRMTokenIdentifier createIdentifier()
AMRMTokenIdentifier
by the RPC layer.createIdentifier
in class org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.yarn.security.AMRMTokenIdentifier>
@InterfaceAudience.Private public org.apache.hadoop.yarn.server.security.MasterKeyData getCurrentMasterKeyData()
@InterfaceAudience.Private public org.apache.hadoop.yarn.server.security.MasterKeyData getNextMasterKeyData()
@InterfaceAudience.Private protected byte[] createPassword(org.apache.hadoop.yarn.security.AMRMTokenIdentifier identifier)
createPassword
in class org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.yarn.security.AMRMTokenIdentifier>
public void recover(NMStateStoreService.RecoveredAMRMProxyState state)
state
- the state to recover fromCopyright © 2008–2023 Apache Software Foundation. All rights reserved.