使用java操作ranger,hdfs ranger授权操作,hive ranger授权操作

最新推荐文章于 2023-01-02 19:44:48 发布
最新推荐文章于 2023-01-02 19:44:48 发布
阅读量1.9k 收藏 7
点赞数
分类专栏: # ranger/kerberos/ldap/knox
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/tototuzuoquan/article/details/108913742
版权

1 创建以下内容

在这里插入图片描述

2 AbstractConfig

package com.test.datamanagement.dataauthorization.beans;

import org.codehaus.jackson.annotate.JsonProperty;

import java.io.Serializable;
import java.util.List;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName AbstractConfig
 * @description TODO
 * @date 2020/4/21 9:57
 **/
public abstract class AbstractConfig implements Serializable {
   

    private static final long serialVersionUID = 6544357528018619278L;
    private List<String> values;
    private Boolean isRecursive;
    private Boolean isExcludes;

    protected AbstractConfig() {
   }

    public List<String> getValues() {
   
        return values;
    }

    public void setValues(List<String> values) {
   
        this.values = values;
    }

    @JsonProperty(value = "isRecursive")
    public Boolean getIsRecursive() {
   
        return isRecursive;
    }

    public void setRecursive(Boolean recursive) {
   
        isRecursive = recursive;
    }

    @JsonProperty(value = "isExcludes")
    public Boolean getIsExcludes() {
   
        return isExcludes;
    }

    public void setExcludes(Boolean excludes) {
   
        isExcludes = excludes;
    }
}

3 AccessInfo

package com.test.datamanagement.dataauthorization.beans;

import org.codehaus.jackson.annotate.JsonProperty;

import java.io.Serializable;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName AccessInfo
 * @description TODO
 * @date 2020/4/21 10:25
 **/
public class AccessInfo implements Serializable {
   
    private static final long serialVersionUID = -4167952102358620895L;
    /**
     * 权限类型
     */
    private String type;

    /**
     * 是否允许
     */
    private Boolean isAllowed;

    public String getType() {
   
        return type;
    }

    public void setType(String type) {
   
        this.type = type;
    }

    @JsonProperty(value = "isAllowed")
    public Boolean getIsAllowed() {
   
        return isAllowed;
    }

    public void setAllowed(Boolean allowed) {
   
        isAllowed = allowed;
    }
}

4 Column

package com.test.datamanagement.dataauthorization.beans;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName Column
 * @description TODO
 * @date 2020/4/21 9:47
 **/
public class Column extends AbstractConfig {
   
    private static final long serialVersionUID = 1094741866960414562L;

    public Column() {
   }

}

5 Database

package com.test.datamanagement.dataauthorization.beans;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName Database
 * @description TODO
 * @date 2020/4/21 9:45
 **/
public class Database extends AbstractConfig {
   
    private static final long serialVersionUID = -2619315946039623847L;

    public Database() {
   }

}

6 HdfsPolicy

package com.test.datamanagement.dataauthorization.beans;

import org.codehaus.jackson.annotate.JsonProperty;

import java.io.Serializable;
import java.util.List;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName HdfsPolicy
 * @description TODO
 * @date 2020/4/17 16:48
 **/
public class HdfsPolicy implements Serializable {
   
    private static final long serialVersionUID = -8946810855575126349L;
    /**
     * 策略类型
     */
    private String policyType;

    /**
     * 策略名称
     */
    private String name;

    /**
     * is_enabled
     */
    private Boolean isEnabled;

    /**
     * policy_priority
     */
    private Integer policyPriority;

    private List<String> policyLabels;

    private String description;

    /**
     * is_audit_enabled
     */
    private Boolean isAuditEnabled;

    private HdfsResource resources;

    private List<PolicyItem> policyItems;

    private List<PolicyItem> denyPolicyItems;

    private List<PolicyItem> allowExceptions;

    private List<PolicyItem> denyExceptions;

    /**
     * 所属服务(服务名称)
     */
    private String service;

    public HdfsPolicy() {
   }

    public String getPolicyType() {
   
        return policyType;
    }

    public void setPolicyType(String policyType) {
   
        this.policyType = policyType;
    }

    public String getName() {
   
        return name;
    }

    public void setName(String name) {
   
        this.name = name;
    }

    @JsonProperty(value = "isEnabled")
    public Boolean getIsEnabled() {
   
        return isEnabled;
    }

    public void setEnabled(Boolean enabled) {
   
        isEnabled = enabled;
    }

    public Integer getPolicyPriority() {
   
        return policyPriority;
    }

    public void setPolicyPriority(Integer policyPriority) {
   
        this.policyPriority = policyPriority;
    }

    public List<String> getPolicyLabels() {
   
        return policyLabels;
    }

    public void setPolicyLabels(List<String> policyLabels) {
   
        this.policyLabels = policyLabels;
    }

    public String getDescription() {
   
        return description;
    }

    public void setDescription(String description) {
   
        this.description = description;
    }

    @JsonProperty(value = "isAuditEnabled")
    public Boolean getIsAuditEnabled() {
   
        return isAuditEnabled;
    }

    public void setAuditEnabled(Boolean auditEnabled) {
   
        isAuditEnabled = auditEnabled;
    }

    public HdfsResource getResources() {
   
        return resources;
    }

    public void setResources(HdfsResource resources) {
   
        this.resources = resources;
    }

    public List<PolicyItem> getPolicyItems() {
   
        return policyItems;
    }

    public void setPolicyItems(List<PolicyItem> policyItems) {
   
        this.policyItems = policyItems;
    }

    public List<PolicyItem> getDenyPolicyItems() {
   
        return denyPolicyItems;
    }

    public void setDenyPolicyItems(List<PolicyItem> denyPolicyItems) {
   
        this.denyPolicyItems = denyPolicyItems;
    }

    public List<PolicyItem> getAllowExceptions() {
   
        return allowExceptions;
    }

    public void setAllowExceptions(List<PolicyItem> allowExceptions) {
   
        this.allowExceptions = allowExceptions;
    }

    public List<PolicyItem> getDenyExceptions() {
   
        return denyExceptions;
    }

    public void setDenyExceptions(List<PolicyItem> denyExceptions) {
   
        this.denyExceptions = denyExceptions;
    }

    public String getService() {
   
        return service;
    }

    public void setService(String service) {
   
        this.service = service;
    }


    public static final class HdfsPolicyBuilder {
   
        private String policyType;
        private String name;
        private Boolean isEnabled;
        private Integer policyPriority;
        private List<String> policyLabels;
        private String description;
        private Boolean isAuditEnabled;
        private HdfsResource resources;
        private List<PolicyItem> policyItems;
        private List<PolicyItem> denyPolicyItems;
        private List<PolicyItem> allowExceptions;
        private List<PolicyItem> denyExceptions;
        private String service;

        private HdfsPolicyBuilder() {
   
        }

        public static HdfsPolicyBuilder builder() {
   
            return new HdfsPolicyBuilder();
        }

        public HdfsPolicyBuilder withPolicyType(String policyType) {
   
            this.policyType = policyType;
            return this;
        }

        public HdfsPolicyBuilder withName(String name) {
   
            this.name = name;
            return this;
        }

        public HdfsPolicyBuilder withIsEnabled(Boolean isEnabled) {
   
            this.isEnabled = isEnabled;
            return this;
        }

        public HdfsPolicyBuilder withPolicyPriority(Integer policyPriority) {
   
            this.policyPriority = policyPriority;
            return this;
        }

        public HdfsPolicyBuilder withPolicyLabels(List<String> policyLabels) {
   
            this.policyLabels = policyLabels;
            return this;
        }

        public HdfsPolicyBuilder withDescription(String description) {
   
            this.description = description;
            return this;
        }

        public HdfsPolicyBuilder withIsAuditEnabled(Boolean isAuditEnabled) {
   
            this.isAuditEnabled = isAuditEnabled;
            return this;
        }

        public HdfsPolicyBuilder withResources(HdfsResource resources) {
   
            this.resources = resources;
            return this;
        }

        public HdfsPolicyBuilder withPolicyItems(List<PolicyItem> policyItems) {
   
            this.policyItems = policyItems;
            return this;
        }

        public HdfsPolicyBuilder withDenyPolicyItems(List<PolicyItem> denyPolicyItems) {
   
            this.denyPolicyItems = denyPolicyItems;
            return this;
        }

        public HdfsPolicyBuilder withAllowExceptions(List<PolicyItem> allowExceptions) {
   
            this.allowExceptions = allowExceptions;
            return this;
        }

        public HdfsPolicyBuilder withDenyExceptions(List<PolicyItem> denyExceptions) {
   
            this.denyExceptions = denyExceptions;
            return this;
        }

        public HdfsPolicyBuilder withService(String service) {
   
            this.service = service;
            return this;
        }

        public HdfsPolicy build() {
   
            HdfsPolicy hdfsPolicy = new HdfsPolicy();
            hdfsPolicy.setPolicyType(policyType);
            hdfsPolicy.setName(name);
            hdfsPolicy.setPolicyPriority(policyPriority);
            hdfsPolicy.setPolicyLabels(policyLabels);
            hdfsPolicy.setDescription(description);
            hdfsPolicy.setResources(resources);
            hdfsPolicy.setPolicyItems(policyItems);
            hdfsPolicy.setDenyPolicyItems(denyPolicyItems);
            hdfsPolicy.setAllowExceptions(allowExceptions);
            hdfsPolicy.setDenyExceptions(denyExceptions);
            hdfsPolicy.setService(service);
            hdfsPolicy.isEnabled = this.isEnabled;
            hdfsPolicy.isAuditEnabled = this.isAuditEnabled;
            return hdfsPolicy;
        }
    }
}

7 HdfsResource

package com.test.datamanagement.dataauthorization.beans;

import java.io.Serializable;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName HdfsResource
 * @description TODO
 * @date 2020/4/21 9:43
 **/
public class HdfsResource implements Serializable {
   
    private static final long serialVersionUID = 6518622425358356391L;

    private Path path;

    public Path getPath() {
   
        return path;
    }

    public void setPath(Path path) {
   
        this.path = path;
    }
}

8 HivePolicy

package com.test.datamanagement.dataauthorization.beans;

import org.codehaus.jackson.annotate.JsonProperty;

import java.io.Serializable;
import java.util.List;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName HivePolicy
 * @description TODO
 * @date 2020/4/17 16:48
 **/
public class HivePolicy implements Serializable {
   
    private static final long serialVersionUID = -5379925186824296473L;
    /**
     * 策略类型
     */
    private String policyType;

    /**
     * 策略名称
     */
    private String name;

    /**
     * is_enabled
     */
    private Boolean isEnabled;

    /**
     * policy_priority
     */
    private Integer policyPriority;

    private List<String> policyLabels;

    private String description;

    /**
     * is_audit_enabled
     */
    private Boolean isAuditEnabled;

    private HiveResource resources;

    private List<PolicyItem> policyItems;

    private List<PolicyItem> denyPolicyItems;

    private List<PolicyItem> allowExceptions;

    private List<PolicyItem> denyExceptions;

    /**
     * 所属服务(服务名称)
     */
    private String service;

    public HivePolicy() {
   }

    public HivePolicy(String policyType, String name,
                      Boolean isEnabled, Integer policyPriority,
                      String description, Boolean isAuditEnabled, String service) {
   
        this.policyType = policyType;
        this.name = name;
        this.isEnabled = isEnabled;
        this.policyPriority = policyPriority;
        this.description = description;
        this.isAuditEnabled = isAuditEnabled;
        this.service = service;
    }

    public String getPolicyType() {
   
        return policyType;
    }

    public void setPolicyType(String policyType) {
   
        this.policyType = policyType;
    }

    public String getName() {
   
        return name;
    }

    public void setName(String name) {
   
        this.name = name;
    }

    @JsonProperty(value = "isEnabled")
    public Boolean getIsEnabled() {
   
        return isEnabled;
    }

    public void setEnabled(Boolean enabled) {
   
        isEnabled = enabled;
    }

    public Integer getPolicyPriority() {
   
        return policyPriority;
    }

    public void setPolicyPriority(Integer policyPriority) {
   
        this.policyPriority = policyPriority;
    }

    public List<String> getPolicyLabels() {
   
        return policyLabels;
    }

    public void setPolicyLabels(List<String> policyLabels) {
   
        this.policyLabels = policyLabels;
    }

    public String getDescription() {
   
        return description;
    }

    public void setDescription(String description) {
   
        this.description = description;
    }

    @JsonProperty(value = "isAuditEnabled")
    public Boolean getIsAuditEnabled() {
   
        return isAuditEnabled;
    }

    public void setAuditEnabled(Boolean auditEnabled) {
   
        isAuditEnabled = auditEnabled;
    }

    public HiveResource getResources() {
   
        return resources;
    }

    public void setResources(HiveResource resources) {
   
        this.resources = resources;
    }

    public List<PolicyItem> getPolicyItems() {
   
        return policyItems;
    }

    public void setPolicyItems(List<PolicyItem> policyItems) {
   
        this.policyItems = policyItems;
    }

    public List<PolicyItem> getDenyPolicyItems() {
   
        return denyPolicyItems;
    }

    public void setDenyPolicyItems(List<PolicyItem> denyPolicyItems) {
   
        this.denyPolicyItems = denyPolicyItems;
    }

    public List<PolicyItem> getAllowExceptions() {
   
        return allowExceptions;
    }

    public void setAllowExceptions(List<PolicyItem> allowExceptions) {
   
        this.allowExceptions = allowExceptions;
    }

    public List<PolicyItem> getDenyExceptions() {
   
        return denyExceptions;
    }

    public void setDenyExceptions(List<PolicyItem> denyExceptions) {
   
        this.denyExceptions = denyExceptions;
    }

    public String getService() {
   
        return service;
    }

    public void setService(String service) {
   
        this.service = service;
    }
}

9 HivePolicyForUpdate

package com.test.datamanagement.dataauthorization.beans;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName HivePolicyForUpdate
 * @description 更新策略的时候
 * @date 2020/5/6 16:14
 **/
public class HivePolicyForUpdate extends HivePolicy {
   
    private static final long serialVersionUID = -313323408326714792L;

    private Long id;

    /** 策略guid **/
    private String guid;

    /** 创建者 **/
    private String createdBy;

    /** 更新者 **/
    private String updatedBy;

    /** 新的版本值 **/
    private Long version;

    /** 资源签名 **/
    private String resourceSignature;

    /** create_time */
    private Long createTime;

    /**
     * update_time
     */
    private Long updateTime;

    public HivePolicyForUpdate() {
   }

    public Long getId() {
   
        return id;
    }

    public void setId(Long id) {
   
        this.id = id;
    }

    public String getGuid() {
   
        return guid;
    }

    public void setGuid(String guid) {
   
        this.guid = guid;
    }

    public String getCreatedBy() {
   
        return createdBy;
    }

    public void setCreatedBy(String createdBy) {
   
        this.createdBy = createdBy;
    }

    public String getUpdatedBy() {
   
        return updatedBy;
    }

    public void setUpdatedBy(String updatedBy) {
   
        this.updatedBy = updatedBy;
    }

    public Long getVersion() {
   
        return version;
    }

    public void setVersion(Long version) {
   
        this.version = version;
    }

    public String getResourceSignature() {
   
        return resourceSignature;
    }

    public void setResourceSignature(String resourceSignature) {
   
        this.resourceSignature = resourceSignature;
    }

    public Long getCreateTime() {
   
        return createTime;
    }

    public void setCreateTime(Long createTime) {
   
        this.createTime = createTime;
    }

    public Long getUpdateTime() {
   
        return updateTime;
    }

    public void setUpdateTime(Long updateTime) {
   
        this.updateTime = updateTime;
    }
}

10 HiveResource

package com.test.datamanagement.dataauthorization.beans;

import java.io.Serializable;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName HiveResource
 * @description TODO
 * @date 2020/4/21 9:43
 **/
public class HiveResource implements Serializable {
   
    private static final long serialVersionUID = -1430242627355290592L;
    /**
     * 数据库
     */
    private Database database;

    /**
     * 可访问的表
     */
    private Table table;

    /**
     * 可访问的列
     */
    private Column column;

    public Database getDatabase() {
   
        return database;
    }

    public void setDatabase(Database database) {
   
        this.database = database;
    }

    public Table getTable() {
   
        return table;
    }

    public void setTable(Table table) {
   
        this.table = table;
    }

    public Column getColumn() {
   
        return column;
    }

    public void setColumn(Column column) {
   
        this.column = column;
    }
}

11 Path

package com.test.datamanagement.dataauthorization.beans;

import org.codehaus.jackson.annotate.JsonProperty;

import java.io.Serializable;
import java.util.List;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName Path
 * @description TODO
 * @date 2020/7/8 15:00
 **/
public class Path implements Serializable {
   
    private static final long serialVersionUID = -6778742922797146458L;

    private Boolean isExcludes;

    private Boolean isRecursive;

    /** 路径列表,类似:["/cececece_20", "/user/cececece_20"] **/
    private List<String> values;

    @JsonProperty(value = "isExcludes")
    public Boolean getIsExcludes() {
   
        return isExcludes;
    }

    public void setExcludes(Boolean excludes) {
   
        isExcludes = excludes;
    }

    @JsonProperty(value = "isRecursive")
    public Boolean getIsRecursive() {
   
        return isRecursive;
    }

    public void setRecursive(Boolean recursive) {
   
        isRecursive = recursive;
    }

    public List<String> getValues() {
   
        return values;
    }

    public void setValues(List<String> values) {
   
        this.values = values;
    }
}

12 PolicyItem

package com.test.datamanagement.dataauthorization.beans;

import java.io.Serializable;
import java.util.List;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName PolicyItem
 * @description TODO
 * @date 2020/4/21 10:10
 **/
public class PolicyItem implements Serializable {
   
    private static final long serialVersionUID = 7698059281969319356L;
    private List<String> groups;

    private List<String> users;

    private List<AccessInfo> accesses;

    private Boolean delegateAdmin;

    private List<Object> conditions;

    public List<String> getGroups() {
   
        return groups;
    }

    public void setGroups(List<String> groups) {
   
        this.groups = groups;
    }

    public List<String> getUsers() {
   
        return users;
    }

    public void setUsers(List<String> users) {
   
        this.users = users;
    }

    public List<AccessInfo> getAccesses() {
   
        return accesses;
    }

    public void setAccesses(List<AccessInfo> accesses) {
   
        this.accesses = accesses;
    }

    public Boolean getDelegateAdmin() {
   
        return delegateAdmin;
    }

    public void setDelegateAdmin(Boolean delegateAdmin) {
   
        this.delegateAdmin = delegateAdmin;
    }

    public List<Object> getConditions() {
   
        return conditions;
    }

    public void setConditions(List<Object> conditions) {
   
        this.conditions = conditions;
    }
}

13 Table

package com.test.datamanagement.dataauthorization.beans;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName Table
 * @description TODO
 * @date 2020/4/21 9:45
 **/
public class Table extends AbstractConfig {
   
    private static final long serialVersionUID = -8352040569163490242L;

    public Table() {
   }

}

14 User

package com.test.datamanagement.dataauthorization.beans;

import java.io.Serializable;
import java.util.List;

import org.apache.commons.lang3.builder.ToStringBuilder;
import org.apache.commons.lang3.builder.ToStringStyle;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName User
 * @description TODO
 * @date 2020/4/17 14:58
 **/
public class User implements Serializable {
   

    private static final long serialVersionUID = -4396396612633542455L;

    /**
     * 所属组,即当前命名空间对应的group,例如:["13"]
     */
    private List<String> groupIdList;

    /**
     * 默认值为:1
     */
    private Integer status;

    /**
     * 用户角色,例如:["ROLE_USER"],此处是固定的
     */
    private List<String> userRoleList;

    /**
     * 用户名,例如:"toto_2"
     */
    private String name;

    /**
     * 密码,例如:"toto_2_20200417"
     */
    private String password;

    /**
     * 例如:toto_2
     */
    private String firstName;

    /**
     * 例如:toto_2,调用的时候填写空串:""
     */
    private String lastName;

    /**
     * 邮箱地址,此处填写""
     */
    private String emailAddress;

    public User() {
   }

    public User(List<String> groupIdList, Integer status, List<String> userRoleList, String name, String password,
            String firstName, String lastName, String emailAddress) {
   
        this.groupIdList = groupIdList;
        this.status = status;
        this.userRoleList = userRoleList;
        this.name = name;
        this.password = password;
        this.firstName = firstName;
        this.lastName = lastName;
        this.emailAddress = emailAddress;
    }

    public List<String> getGroupIdList() {
   
        return groupIdList;
    }

    public void setGroupIdList(List<String> groupIdList) {
   
        this.groupIdList = groupIdList;
    }

    public Integer getStatus() {
   
        return status;
    }

    public void setStatus(Integer status) {
   
        this.status = status;
    }

    public List<String> getUserRoleList() {
   
        return userRoleList;
    }

    public void setUserRoleList(List<String> userRoleList) {
   
        this.userRoleList = userRoleList;
    }

    public String getName() {
   
        return name;
    }

    public void setName(String name) {
   
        this.name = name;
    }

    public String getPassword() {
   
        return password;
    }

    public void setPassword(String password) {
   
        this.password = password;
    }

    public String getFirstName() {
   
        return firstName;
    }

    public void setFirstName(String firstName) {
   
        this.firstName = firstName;
    }

    public String getLastName() {
   
        return lastName;
    }

    public void setLastName(String lastName) {
   
        this.lastName = lastName;
    }

    public String getEmailAddress() {
   
        return emailAddress;
    }

    public void setEmailAddress(String emailAddress) {
   
        this.emailAddress = emailAddress;
    }

    @Override
    public String toString() {
   
        return ToStringBuilder.reflectionToString(this, ToStringStyle.MULTI_LINE_STYLE);
    }
}

15 RangerConstant

package com.test.datamanagement.dataauthorization.constant;

/**
 * @author tuzuoquan
 * @version 1.0
 * @ClassName RangerConstant
 * @description TODO
 * @date 2020/4/21 16:36
 **/
public final class RangerConstant {
   
    /** 登录地址 **/
    public static final String LOGIN_URL = "/login";
    /** 添加用户接口 **/
    public static final String USER_ADD_URL = "/service/xusers/secure/users";
    /** 删除用户的接口前缀 **/
    public static final String USER_DELETE_URL_PREFIX = "/service/xusers/secure/users/id/";
    /** 删
最低0.47元/天 解锁文章
涂作权的博客
关注
  • 0
    点赞
  • 7
    收藏
    觉得还不错? 一键收藏
  • 打赏
    打赏
  • 3
    评论
专栏目录
java ranger rest_Ranger前台分析
weixin_28726871的博客
02-16 405
一、前台登录流程:j_spring_security_check跳转org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter第二种是自定义一个filter让它继承自UsernamePasswordAuthenticationFilter,然后重写attemptAuthentication...
Rangerjava 接口操作
Stay Focused And Work Hard !!!
08-03 5792
简单粗暴直接上代码package com.bms.service.rangerimpl;import org.apache.ranger.admin.client.datatype.RESTResponse; import org.apache.ranger.plugin.model.RangerPolicy; import org.apache.ranger.plugin.util.RangerR
java ranger rest_REST - Swagger-Ranger - 博客园
weixin_29663861的博客
02-16 258
REST资料引用REST的定义Representational State Transfer (REST)其实是一种组织Web服务的架构,而并不是我们想象的那样是实现Web服务的一种新的技术,更没有要求一定要使用HTTP。其目标是为了创建具有良好扩展性的分布式系统。REST的约束REST作为一种架构,其提出了一系列架构级约束。这些约束有:- 1.使用客户/服务器模型:客户和服务器之间通过一个统一...
hdfs java 权限管理,Hive授权
weixin_33277243的博客
03-19 150
foo用户访问testtbl。 #drop tablehive> drop table testtbl;FAILED: Execution Error, return code 1 from org.apache.hadoop.hive.ql.exec.DDLTask. MetaException(message:Permission denied: user=foo, access=REA...
java ranger rest_Apache Ranger:Hadoop生态圈的安全管家
weixin_30871695的博客
02-16 177
原标题:Apache Ranger:Hadoop生态圈的安全管家 文 | 谢海红Apache Ranger是一个支持、监控和管理整个Hadoop集群数据安全的框架,它的愿景是在Apache Hadoop生态系统中提供全面的安全性。随着Apache YARN的出现,Hadoop平台现在可以支持一个真正的数据湖体系结构。企业可以在多租户环境中运行多个工作负载,因此, Hadoop中的数据安全性需要发展...
ranger-2.1.0-hive-plugin.tar.gz
08-09
1. **细粒度权限控制**:Ranger Hive 插件允许管理员为用户或组设置对数据库、表、列甚至行级别的访问权限,如读、写、执行等操作。 2. **动态数据屏蔽**:基于预定义的规则,Ranger 可以在查询结果返回之前动态地...
ranger-2.1.0-hdfs-plugin.tar.gz
08-09
4. **多服务支持**:除了HDFSRanger还支持其他大数据组件,如Hive、Kafka、HBase等,实现了整个大数据环境的一致性安全管理。 5. **实时策略生效**:Ranger采用内存中缓存策略,这意味着一旦策略被修改,更改会...
ranger-2.0.0-hive-plugin.tar.gz
06-04
使用Apache Ranger Hive插件能够显著提升大数据环境的安全性和管理效率,尤其是在大型企业环境中,它提供了必要的工具来满足法规遵从性和数据隐私的要求。这个预编译的包对于那些希望快速启用Ranger功能而不想经历...
ranger-2.0.0-hdfs-plugin.tar.gz
06-04
4. **统一视图**:在一个中心位置管理多个Hadoop组件的安全策略,如HDFSHive、Kafka等,提供了一致的用户体验。 5. **可扩展性**:Ranger 可以与其他Hadoop组件集成,通过插件机制扩展其安全性。 `ranger-2.0.0-...
ranger-2.0.1-SNAPSHOT-hdfs-plugin.tar.gz
02-25
通过这种方式,Ranger增强了HDFS的安全性,防止了未授权的访问。 3. **Linux环境**:由于描述中提到“直接在Linux上解压”,我们可以推断该插件是为Linux操作系统设计的。安装和配置Ranger HDFS插件通常需要在运行...
ranger api 大全
03-08
ranger api 大全
sqoop2 java api实现_Ranger-Sqoop2插件实现详解
weixin_39530838的博客
02-22 271
1.组件和插件介绍1.1.Ranger介绍Apache Ranger能够监控和管理整个Hadoop平台的综合数据安全,目前作为Apache Top Level Project(TLP顶级项目),最新版本是2.0.0。它主要提供如下特性:基于策略(Policy-based)的访问权限模型通用的策略同步与决策逻辑,方便控制插件的扩展接入内置常见系统(如HDFS、YARN、HBase等12个)的控制插件...
Apache Ranger添加用户并给用户添加Hive权限
zhengzaifeidelushang的博客
12-29 1329
Apache Ranger添加用户并给用户添加Hive权限一、Ranger上添加新用户二、rangerhive权限分类三、ranger上为用户添加hive服务权限四、ranger上为用户添加数据库、表、字段权限 一、Ranger上添加新用户 查看创建好的用户 二、rangerhive权限分类 rangerhive权限分类: database url hiveservice global 三、ranger上为用户添加hive服务权限 四、ranger上为用户添加数据库、表、字段权限
编写Java代码对HDFS进行增删改查操作
qq_41395106的博客
04-04 1092
import java.io.File; import java.io.FileOutputStream; import java.io.IOException; import java.net.URI; import org.apache.commons.compress.utils.IOUtils; import org.apache.hadoop.conf.Configuration; i...
hadoop+kerberos+ranger Api整理(六)
weixin_40496191的博客
01-02 1278
hadoop相关组件api
java ranger rest_Ranger-Sqoop2插件安装
weixin_39817347的博客
02-24 126
Ranger-Sqoop2插件安装,基于Ranger版本1.0.0,支持Sqoop2版本1.99.7。1.获取安装包scp root@10.43.159.11:/home/compile/ranger/target/ranger-1.0.0-SNAPSHOT-sqoop-plugin.tar.gz .2.解压tar -zxvf ranger-1.0.0-SNAPSHOT-sqoop-plugin....
HDFS、Yarn、Hive…MRS中使用Ranger实现权限管理全栈式实践
华为云官方博客
07-15 1495
Ranger为组件提供基于PBAC的鉴权插件,供组件服务端运行,目前支持Ranger鉴权的组件有HDFS、Yarn、Hive、HBase、Kafka、Storm和Spark2x,后续会支持更多组件。
java远程连接hadoop
陈伟键的博客
08-31 5465
最近在学习hadoop,在linux上面启动hadoop后准备用java操作hadoop,看了中文的资料都是坑~ String HDFS_PATH = "hdfs://192.168.203.128:9000"; //要连接的hadoop Configuration configuration = new Configuration(); configuration.set("fs.
cdh6 ranger
最新发布
05-13
CDH6和Ranger都是Apache Hadoop大数据生态系统中的两个重要组件。 CDH6是Cloudera发布的基于Apache Hadoop的软件套件,包括HDFS、YARN、HBase、ZooKeeper、Hive、Impala、Spark、Kudu和其他一些工具和库。CDH6对企业级安全、可靠性和性能进行了全面优化,并且提供了可视化的管理界面,方便管理员管理整个生态系统。CDH6可以支持PB级别的数据存储和处理,如果需要大数据解决方案,CDH6是一个不错的选择。 Ranger是Apache Hadoop的一种安全管理框架,提供了细粒度的访问控制和权限管理。Ranger可以为Hadoop各个服务提供安全策略的管理,并且提供了丰富的审计和报告机制。Ranger可以支持不同的认证和授权方式,包括Kerberos、LDAP、Active Directory等等。Ranger可以满足企业级安全要求,对于需要严格安全管理的情况,Ranger是必不可少的组件。 CDH6和Ranger相结合可以使企业在安全和可靠性方面得到更好的保障。CDH6提供了一个强大的基础组件集,能够支持各种大数据处理需求;Ranger则提供了细粒度的访问控制和权限管理,可以保证数据的安全性。总之,CDH6和Ranger是Apache Hadoop生态系统中非常重要的两个组件,它们的结合可以为企业提供全面的大数据解决方案。

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论 3
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包

打赏作者

涂作权的博客

你的鼓励将是我创作的最大动力

¥1 ¥2 ¥4 ¥6 ¥10 ¥20
扫码支付:¥1
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值