public class NMTokenSecretManagerInNM
extends org.apache.hadoop.yarn.server.security.BaseNMTokenSecretManager
Constructor and Description |
---|
NMTokenSecretManagerInNM() |
NMTokenSecretManagerInNM(NMStateStoreService stateStore) |
Modifier and Type | Method and Description |
---|---|
void |
appAttemptStartContainer(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier)
This will be called by startContainer.
|
void |
appFinished(org.apache.hadoop.yarn.api.records.ApplicationId appId) |
org.apache.hadoop.yarn.api.records.NMToken |
generateNMToken(String applicationSubmitter,
org.apache.hadoop.yarn.api.records.Container container)
Used by the Distributed Scheduler framework to generate NMTokens
|
org.apache.hadoop.yarn.api.records.NodeId |
getNodeId() |
boolean |
isAppAttemptNMTokenKeyPresent(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId) |
void |
recover() |
byte[] |
retrievePassword(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier)
This method will be used to verify NMTokens generated by different master
keys.
|
void |
setMasterKey(org.apache.hadoop.yarn.server.api.records.MasterKey masterKey)
Used by NodeManagers to create a token-secret-manager with the key
obtained from the RM.
|
void |
setNodeId(org.apache.hadoop.yarn.api.records.NodeId nodeId) |
createIdentifier, createNewMasterKey, createNMToken, createPassword, getCurrentKey, newInstance, retrivePasswordInternal
public NMTokenSecretManagerInNM()
public NMTokenSecretManagerInNM(NMStateStoreService stateStore)
public void recover() throws IOException
IOException
@InterfaceAudience.Private public void setMasterKey(org.apache.hadoop.yarn.server.api.records.MasterKey masterKey)
public byte[] retrievePassword(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier) throws org.apache.hadoop.security.token.SecretManager.InvalidToken
retrievePassword
in class org.apache.hadoop.yarn.server.security.BaseNMTokenSecretManager
org.apache.hadoop.security.token.SecretManager.InvalidToken
public void appFinished(org.apache.hadoop.yarn.api.records.ApplicationId appId)
public void appAttemptStartContainer(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier) throws org.apache.hadoop.security.token.SecretManager.InvalidToken
org.apache.hadoop.security.token.SecretManager.InvalidToken
public void setNodeId(org.apache.hadoop.yarn.api.records.NodeId nodeId)
@InterfaceAudience.Private public boolean isAppAttemptNMTokenKeyPresent(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId)
@InterfaceAudience.Private public org.apache.hadoop.yarn.api.records.NodeId getNodeId()
public org.apache.hadoop.yarn.api.records.NMToken generateNMToken(String applicationSubmitter, org.apache.hadoop.yarn.api.records.Container container)
applicationSubmitter
- container
- Copyright © 2008–2023 Apache Software Foundation. All rights reserved.