List of usage examples for org.apache.hadoop.security UserGroupInformation createProxyUserForTesting
public static UserGroupInformation createProxyUserForTesting(String user, UserGroupInformation realUser, String[] userGroups)
From source file:org.apache.falcon.hadoop.HadoopClientFactoryTest.java
License:Apache License
@Test public void testCreateFileSystem() throws Exception { Configuration conf = embeddedCluster.getConf(); UserGroupInformation.setConfiguration(conf); UserGroupInformation realUser = UserGroupInformation.createUserForTesting(FalconTestUtil.TEST_USER_2, new String[] { "testgroup" }); UserGroupInformation.createProxyUserForTesting("proxyuser", realUser, new String[] { "proxygroup" }); URI uri = new URI(conf.get(HadoopClientFactory.FS_DEFAULT_NAME_KEY)); Assert.assertNotNull(uri);/*from w w w .java 2 s . c o m*/ FileSystem fs = HadoopClientFactory.get().createFileSystem(realUser, uri, conf); Assert.assertNotNull(fs); }
From source file:org.apache.falcon.hadoop.HadoopClientFactoryTest.java
License:Apache License
@Test public void testCreateFileSystemWithUser() throws Exception { Configuration conf = embeddedCluster.getConf(); UserGroupInformation realUser = UserGroupInformation.createUserForTesting(FalconTestUtil.TEST_USER_2, new String[] { "testgroup" }); UserGroupInformation.createProxyUserForTesting("proxyuser", realUser, new String[] { "proxygroup" }); UserGroupInformation.setConfiguration(conf); URI uri = new URI(conf.get(HadoopClientFactory.FS_DEFAULT_NAME_KEY)); Assert.assertNotNull(uri);/* w ww . ja va 2s .c om*/ CurrentUser.authenticate(System.getProperty("user.name")); FileSystem fs = HadoopClientFactory.get().createFileSystem(CurrentUser.getProxyUGI(), uri, conf); Assert.assertNotNull(fs); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test public void testAuthorizeAdminResourceVersionAction() throws Exception { UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting("blah", realUser, new String[] { "blah-group", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource("admin", "version", null, null, proxyUgi); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test public void testAuthorizeSuperUser() throws Exception { UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting(EntityBuilderTestUtil.USER, realUser, new String[] { "group", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource("entities", "schedule", "feed", feedEntity.getName(), proxyUgi); provider.authorizeResource("instance", "status", "feed", feedEntity.getName(), proxyUgi); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test public void testAuthorizeSuperUserGroup() throws Exception { UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting("blah", realUser, new String[] { "falcon", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource("entities", "schedule", "feed", feedEntity.getName(), proxyUgi); provider.authorizeResource("instance", "status", "feed", feedEntity.getName(), proxyUgi); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test(dataProvider = "adminResourceActions") public void testAuthorizeAdminResourceAdmin(String action) throws Exception { StartupProperties.get().setProperty("falcon.security.authorization.admin.users", "admin"); StartupProperties.get().setProperty("falcon.security.authorization.admin.groups", "admin"); UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting("admin", realUser, new String[] { "admin", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource("admin", action, null, null, proxyUgi); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test public void testAuthorizeAdminResourceAdminUserBadGroup() throws Exception { StartupProperties.get().setProperty("falcon.security.authorization.admin.users", "admin"); StartupProperties.get().setProperty("falcon.security.authorization.admin.groups", "admin"); UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting("admin", realUser, new String[] { "admin-group", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource("admin", "version", null, null, proxyUgi); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test public void testAuthorizeAdminResourceAdminGroupBadUser() throws Exception { StartupProperties.get().setProperty("falcon.security.authorization.admin.users", "admin"); StartupProperties.get().setProperty("falcon.security.authorization.admin.groups", "admin-group"); UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting("admin-user", realUser, new String[] { "admin-group", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource("admin", "version", null, null, proxyUgi); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test(expectedExceptions = AuthorizationException.class) public void testAuthorizeAdminResourceInvalidUserAndGroup() throws Exception { StartupProperties.get().setProperty("falcon.security.authorization.admin.groups", "admin"); UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting("admin-user", realUser, new String[] { "admin-group", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource("admin", "stack", null, null, proxyUgi); Assert.fail("User does not belong to both admin-users not groups"); }
From source file:org.apache.falcon.security.DefaultAuthorizationProviderTest.java
License:Apache License
@Test(dataProvider = "entityResourceActions") public void testAuthorizeEntitiesInstancesReadOnlyResource(String resource, String action, String entityType) throws Exception { UserGroupInformation proxyUgi = UserGroupInformation.createProxyUserForTesting("admin-user", realUser, new String[] { "admin-group", }); DefaultAuthorizationProvider provider = new DefaultAuthorizationProvider(); provider.authorizeResource(resource, action, entityType, null, proxyUgi); }