Prosoft Git

AuthenticationUtils.java

Home / azkaban-common / src / main / java / azkaban / utils / AuthenticationUtils.java

63 lines | 2.216 kB Blame History Raw Download 
/*
* Copyright 2018 LinkedIn Corp.
*
* Licensed under the Apache License, Version 2.0 (the “License”); you may not
* use this file except in compliance with the License. You may obtain a copy of
* the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an “AS IS” BASIS, WITHOUT
* WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
* License for the specific language governing permissions and limitations under
* the License.
*/
package azkaban.utils;

import java.net.HttpURLConnection;
import java.net.URL;
import java.net.URLClassLoader;
import java.security.PrivilegedExceptionAction;
import java.util.ArrayList;
import java.util.List;
import org.apache.hadoop.conf.Configuration;
import org.apache.hadoop.security.UserGroupInformation;
import org.apache.hadoop.security.authentication.client.AuthenticatedURL;
import org.apache.hadoop.security.authentication.client.AuthenticatedURL.Token;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

/**
 * The util class for hadoop authentication.
 */
public class AuthenticationUtils {

  private static final Logger logger = LoggerFactory.getLogger(AuthenticationUtils.class);

  public static HttpURLConnection loginAuthenticatedURL(final URL url, final String keytabPrincipal,
      final String keytabPath) throws Exception {
    final List<URL> resources = new ArrayList<>();
    resources.add(url);

    final URLClassLoader ucl = new URLClassLoader(resources.toArray(new URL[resources.size()]));
    final Configuration conf = new Configuration();
    conf.setClassLoader(ucl);
    UserGroupInformation.setConfiguration(conf);

    logger.info(
        "Logging in URL: " + url.toString() + " using Principal: " + keytabPrincipal + ", Keytab: "
            + keytabPath);

    UserGroupInformation.loginUserFromKeytab(keytabPrincipal, keytabPath);

    final HttpURLConnection connection = UserGroupInformation.getLoginUser().doAs(
        (PrivilegedExceptionAction<HttpURLConnection>) () -> {
          final Token token = new Token();
          return new AuthenticatedURL().openConnection(url, token);
        });

    return connection;
  }
}

Bonobo Git Server (6.3.0.632) © 2015 Jakub Chodounský · Official Page · Github