public class BlockPoolTokenSecretManager
extends org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier>
BlockTokenSecretManager per block pool. Routes the requests
given a block pool Id to corresponding BlockTokenSecretManager| Constructor and Description |
|---|
BlockPoolTokenSecretManager() |
| Modifier and Type | Method and Description |
|---|---|
void |
addBlockPool(String bpid,
org.apache.hadoop.hdfs.security.token.block.BlockTokenSecretManager secretMgr)
Add a block pool Id and corresponding
BlockTokenSecretManager to map |
void |
addKeys(String bpid,
org.apache.hadoop.hdfs.security.token.block.ExportedBlockKeys exportedKeys)
See
BlockTokenSecretManager.addKeys(ExportedBlockKeys). |
void |
checkAccess(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier id,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode)
See
BlockTokenSecretManager.checkAccess(BlockTokenIdentifier,
String, ExtendedBlock, BlockTokenIdentifier.AccessMode). |
void |
checkAccess(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier id,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode,
org.apache.hadoop.fs.StorageType[] storageTypes)
See
BlockTokenSecretManager.checkAccess(BlockTokenIdentifier,
String, ExtendedBlock, BlockTokenIdentifier.AccessMode,
StorageType[]) |
void |
checkAccess(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier id,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode,
org.apache.hadoop.fs.StorageType[] storageTypes,
String[] storageIds)
See
BlockTokenSecretManager.checkAccess(BlockTokenIdentifier,
String, ExtendedBlock, BlockTokenIdentifier.AccessMode,
StorageType[], String[]) |
void |
checkAccess(org.apache.hadoop.security.token.Token<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier> token,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode)
See
BlockTokenSecretManager.checkAccess(Token, String,
ExtendedBlock, BlockTokenIdentifier.AccessMode). |
void |
checkAccess(org.apache.hadoop.security.token.Token<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier> token,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode,
org.apache.hadoop.fs.StorageType[] storageTypes,
String[] storageIds)
See
BlockTokenSecretManager.checkAccess(Token, String,
ExtendedBlock, BlockTokenIdentifier.AccessMode,
StorageType[], String[]) |
void |
clearAllKeysForTesting() |
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier |
createIdentifier()
Return an empty BlockTokenIdentifer
|
byte[] |
createPassword(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier identifier) |
org.apache.hadoop.hdfs.security.token.block.DataEncryptionKey |
generateDataEncryptionKey(String blockPoolId) |
org.apache.hadoop.security.token.Token<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier> |
generateToken(org.apache.hadoop.hdfs.protocol.ExtendedBlock b,
EnumSet<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode> of,
org.apache.hadoop.fs.StorageType[] storageTypes,
String[] storageIds)
See
BlockTokenSecretManager.generateToken(ExtendedBlock, EnumSet,
StorageType[], String[]). |
org.apache.hadoop.hdfs.security.token.block.BlockTokenSecretManager |
get(String bpid) |
boolean |
isBlockPoolRegistered(String bpid) |
byte[] |
retrieveDataEncryptionKey(int keyId,
String blockPoolId,
byte[] nonce) |
byte[] |
retrievePassword(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier identifier) |
public void addBlockPool(String bpid, org.apache.hadoop.hdfs.security.token.block.BlockTokenSecretManager secretMgr)
BlockTokenSecretManager to mapbpid - block pool IdsecretMgr - BlockTokenSecretManagerpublic org.apache.hadoop.hdfs.security.token.block.BlockTokenSecretManager get(String bpid)
public boolean isBlockPoolRegistered(String bpid)
public org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier createIdentifier()
createIdentifier in class org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier>public byte[] createPassword(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier identifier)
createPassword in class org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier>public byte[] retrievePassword(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier identifier)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
retrievePassword in class org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier>org.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void checkAccess(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier id,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode,
org.apache.hadoop.fs.StorageType[] storageTypes,
String[] storageIds)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
BlockTokenSecretManager.checkAccess(BlockTokenIdentifier,
String, ExtendedBlock, BlockTokenIdentifier.AccessMode,
StorageType[], String[])org.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void checkAccess(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier id,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode,
org.apache.hadoop.fs.StorageType[] storageTypes)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
BlockTokenSecretManager.checkAccess(BlockTokenIdentifier,
String, ExtendedBlock, BlockTokenIdentifier.AccessMode,
StorageType[])org.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void checkAccess(org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier id,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
BlockTokenSecretManager.checkAccess(BlockTokenIdentifier,
String, ExtendedBlock, BlockTokenIdentifier.AccessMode).org.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void checkAccess(org.apache.hadoop.security.token.Token<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier> token,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
BlockTokenSecretManager.checkAccess(Token, String,
ExtendedBlock, BlockTokenIdentifier.AccessMode).org.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void checkAccess(org.apache.hadoop.security.token.Token<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier> token,
String userId,
org.apache.hadoop.hdfs.protocol.ExtendedBlock block,
org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode mode,
org.apache.hadoop.fs.StorageType[] storageTypes,
String[] storageIds)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
BlockTokenSecretManager.checkAccess(Token, String,
ExtendedBlock, BlockTokenIdentifier.AccessMode,
StorageType[], String[])org.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void addKeys(String bpid, org.apache.hadoop.hdfs.security.token.block.ExportedBlockKeys exportedKeys) throws IOException
BlockTokenSecretManager.addKeys(ExportedBlockKeys).IOExceptionpublic org.apache.hadoop.security.token.Token<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier> generateToken(org.apache.hadoop.hdfs.protocol.ExtendedBlock b,
EnumSet<org.apache.hadoop.hdfs.security.token.block.BlockTokenIdentifier.AccessMode> of,
org.apache.hadoop.fs.StorageType[] storageTypes,
String[] storageIds)
throws IOException
BlockTokenSecretManager.generateToken(ExtendedBlock, EnumSet,
StorageType[], String[]).IOExceptionpublic void clearAllKeysForTesting()
public org.apache.hadoop.hdfs.security.token.block.DataEncryptionKey generateDataEncryptionKey(String blockPoolId)
public byte[] retrieveDataEncryptionKey(int keyId,
String blockPoolId,
byte[] nonce)
throws IOException
IOExceptionCopyright © 2008–2023 Apache Software Foundation. All rights reserved.