org.apache.hadoop.yarn.server.resourcemanager.security
Class RMContainerTokenSecretManager
java.lang.Object
org.apache.hadoop.security.token.SecretManager<org.apache.hadoop.yarn.security.ContainerTokenIdentifier>
org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager
org.apache.hadoop.yarn.server.resourcemanager.security.RMContainerTokenSecretManager
public class RMContainerTokenSecretManager
- extends org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager
SecretManager for ContainerTokens. This is RM-specific and rolls the
master-keys every so often.
Nested classes/interfaces inherited from class org.apache.hadoop.security.token.SecretManager |
org.apache.hadoop.security.token.SecretManager.InvalidToken |
Fields inherited from class org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager |
containerTokenExpiryInterval, currentMasterKey, readLock, readWriteLock, writeLock |
Method Summary |
void |
activateNextMasterKey()
Activate the new master-key |
org.apache.hadoop.yarn.api.records.Token |
createContainerToken(org.apache.hadoop.yarn.api.records.ContainerId containerId,
org.apache.hadoop.yarn.api.records.NodeId nodeId,
String appSubmitter,
org.apache.hadoop.yarn.api.records.Resource capability)
Helper function for creating ContainerTokens |
org.apache.hadoop.yarn.server.api.records.MasterKey |
getNextKey()
|
void |
rollMasterKey()
Creates a new master-key and sets it as the primary. |
void |
start()
|
void |
stop()
|
Methods inherited from class org.apache.hadoop.yarn.server.security.BaseContainerTokenSecretManager |
createIdentifier, createNewMasterKey, createPassword, getCurrentKey, retrievePassword, retrievePasswordInternal |
Methods inherited from class org.apache.hadoop.security.token.SecretManager |
checkAvailableForRead, createPassword, createSecretKey, generateSecret, retriableRetrievePassword |
Methods inherited from class java.lang.Object |
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
RMContainerTokenSecretManager
public RMContainerTokenSecretManager(org.apache.hadoop.conf.Configuration conf)
start
public void start()
stop
public void stop()
rollMasterKey
@InterfaceAudience.Private
public void rollMasterKey()
- Creates a new master-key and sets it as the primary.
getNextKey
@InterfaceAudience.Private
public org.apache.hadoop.yarn.server.api.records.MasterKey getNextKey()
activateNextMasterKey
@InterfaceAudience.Private
public void activateNextMasterKey()
- Activate the new master-key
createContainerToken
public org.apache.hadoop.yarn.api.records.Token createContainerToken(org.apache.hadoop.yarn.api.records.ContainerId containerId,
org.apache.hadoop.yarn.api.records.NodeId nodeId,
String appSubmitter,
org.apache.hadoop.yarn.api.records.Resource capability)
- Helper function for creating ContainerTokens
- Parameters:
containerId
- nodeId
- appSubmitter
- capability
-
- Returns:
- the container-token
Copyright © 2014 Apache Software Foundation. All Rights Reserved.