azkaban-aplcache

Revert "Use RetryingHiveMetaStoreClient instead of HiveMetaStoreClient …

7/10/2017 7:30:10 PM

3.31.0

(#1235)" (#1269)

The PR #1235 (commit 68e507208941659026ac15a1b242364b25f5fa31) introduces a bug which breaks Azkaban's capability to handle multiple HCAT servers. More specifically #1235 introduces a factory class for the Hive Client and caches the `HiveConf` during construction. When fetching delegation tokens from other HCAT servers, it accidentally uses the cached configuration instead of creating a new HiveConf specific to the target HCAT server. Hence it ends up fetching tokens from `HIVE_HOME` configured HCAT server instead of the target HCAT server leading to SASL errors.

Reverting the change. Confirmed that `HadoopSecurityManager_H_2_0` is identical to the version prior to #1235

Suvodeep Pyne

Commit: 6c6669f

Tree: 98d3fa2

Parents: b266785

Enable -Werror to prevent future compilation warnings (#1266) Documentation …

7/10/2017 6:55:23 PM

on java compiler including info on -Werror flag:
http://docs.oracle.com/javase/7/docs/technotes/tools/windows/javac.html

Charlie Summers

Commit: b266785

Tree: 396a796

Parents: 0863d24

Removed Project Spec dead code (#1268) There feature has …

7/10/2017 6:49:11 PM

been scraped and wasn't implemented in totality. Removing dead code.

Suvodeep Pyne

Commit: 0863d24

Tree: 52c71a9

Parents: cd92eea

Fixing ClassCanBeStatic warning in ProcessJobTest (#1267) http://errorprone.info/bugpattern/ClassCanBeStatic

7/10/2017 5:40:25 PM

Charlie Summers

Commit: cd92eea

Tree: d852a98

Parents: 080d857

Issue #1256 - enabling config setting to prevent service users …

6/29/2017 10:42:44 PM

from running Azkaban flows (#1257)

* Issue #1256 - enabling config setting to prevent service users from running Azkaban flows

Adam Faris

Commit: 080d857

Tree: e577012

Parents: c4d8734

add unit test for #1253 (#1260)

6/29/2017 9:20:20 PM

Cheng Ren

Commit: c4d8734

Tree: 8a5d9c8

Parents: 7aff4b6

fix race condition between killing job and initializing job …

6/28/2017 8:28:12 PM

(#1253)

Cheng Ren

Commit: 7aff4b6

Tree: d2e9362

Parents: 4e4aa25

Refactor: Guice injection of Azkaban Web Server dependencies …

6/28/2017 7:16:38 PM

(#1255)

The current code uses the `SERVICE_PROVIDER` interface to fetch dependencies for the Web Server. Refactored the code to enable parameterized dependency injection from the construction which is the standard way of declaring dependencies. In the process, removed legacy constructor from `AzkabanWebServer` and removed legacy class `AzkabanServletContextListener` which is no longer being used.

Injection sanity tests already exist in the code. Tested solo server and it works as well.

Suvodeep Pyne

Commit: 4e4aa25

Tree: aa076fa

Parents: d1b836a

New status: KILLING (#1172)

6/28/2017 2:26:53 PM

Juho Autio

Commit: d1b836a

Tree: a75e150

Parents: 6cdcc7b

Disallowing users from logging in via URI QueryString (#1252) Related …

6/27/2017 7:04:20 PM

to #990

Users currently can login by passing their credentials through the query string in the URI in this method:

curl -X POST http://localhost:8081/?action=login\&username=azkaban\&password=azkaban

This leads to sensitive information being logged in access logs and overall isn't a secure method of logging in.

This PR fails these attempts and returns an appropriate warning to users. It also stops the query string from being logged when these requests are made.

This PR includes testing to replicate this user behavior for future regression testing.

Charlie Summers

Commit: 6cdcc7b

Tree: fcd6e06

Parents: 9da02b4