org.apache.hadoop.yarn.server.resourcemanager.security
Class RMContainerTokenSecretManager

java.lang.Object
  extended by org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.yarn.security.ContainerTokenIdentifier>
      extended by org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager
          extended by org.apache.hadoop.yarn.server.resourcemanager.security.RMContainerTokenSecretManager

public class RMContainerTokenSecretManager
extends org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager

SecretManager for ContainerTokens. This is RM-specific and rolls the master-keys every so often.


Nested Class Summary
 
Nested classes/interfaces inherited from class org.apache.hadoop.security.token.SecretManager
org.apache.hadoop.security.token.SecretManager.InvalidToken
 
Field Summary
 
Fields inherited from class org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager
containerTokenExpiryInterval, currentMasterKey, readLock, readWriteLock, writeLock
 
Constructor Summary
RMContainerTokenSecretManager(org.apache.hadoop.conf.Configuration conf)
           
 
Method Summary
 void activateNextMasterKey()
          Activate the new master-key
 org.apache.hadoop.yarn.api.records.Token createContainerToken(org.apache.hadoop.yarn.api.records.ContainerId containerId, org.apache.hadoop.yarn.api.records.NodeId nodeId, String appSubmitter, org.apache.hadoop.yarn.api.records.Resource capability)
          Helper function for creating ContainerTokens
 org.apache.hadoop.yarn.server.api.records.MasterKey getNextKey()
           
 void rollMasterKey()
          Creates a new master-key and sets it as the primary.
 void start()
           
 void stop()
           
 
Methods inherited from class org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager
createIdentifier, createNewMasterKey, createPassword, getCurrentKey, retrievePassword, retrievePasswordInternal
 
Methods inherited from class org.apache.hadoop.security.token.SecretManager
checkAvailableForRead, createPassword, createSecretKey, generateSecret, retriableRetrievePassword
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Constructor Detail

RMContainerTokenSecretManager

public RMContainerTokenSecretManager(org.apache.hadoop.conf.Configuration conf)
Method Detail

start

public void start()

stop

public void stop()

rollMasterKey

@InterfaceAudience.Private
public void rollMasterKey()
Creates a new master-key and sets it as the primary.


getNextKey

@InterfaceAudience.Private
public org.apache.hadoop.yarn.server.api.records.MasterKey getNextKey()

activateNextMasterKey

@InterfaceAudience.Private
public void activateNextMasterKey()
Activate the new master-key


createContainerToken

public org.apache.hadoop.yarn.api.records.Token createContainerToken(org.apache.hadoop.yarn.api.records.ContainerId containerId,
                                                                     org.apache.hadoop.yarn.api.records.NodeId nodeId,
                                                                     String appSubmitter,
                                                                     org.apache.hadoop.yarn.api.records.Resource capability)
Helper function for creating ContainerTokens

Parameters:
containerId -
nodeId -
appSubmitter -
capability -
Returns:
the container-token


Copyright © 2014 Apache Software Foundation. All Rights Reserved.