public class NMTokenSecretManagerInNM
extends org.apache.hadoop.yarn.server.security.BaseNMTokenSecretManager
| Constructor and Description |
|---|
NMTokenSecretManagerInNM() |
NMTokenSecretManagerInNM(NMStateStoreService stateStore) |
| Modifier and Type | Method and Description |
|---|---|
void |
appAttemptStartContainer(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier)
This will be called by startContainer.
|
void |
appFinished(org.apache.hadoop.yarn.api.records.ApplicationId appId) |
org.apache.hadoop.yarn.api.records.NMToken |
generateNMToken(String applicationSubmitter,
org.apache.hadoop.yarn.api.records.Container container)
Used by the Distributed Scheduler framework to generate NMTokens
|
org.apache.hadoop.yarn.api.records.NodeId |
getNodeId() |
boolean |
isAppAttemptNMTokenKeyPresent(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId) |
void |
recover() |
byte[] |
retrievePassword(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier)
This method will be used to verify NMTokens generated by different master
keys.
|
void |
setMasterKey(org.apache.hadoop.yarn.server.api.records.MasterKey masterKey)
Used by NodeManagers to create a token-secret-manager with the key
obtained from the RM.
|
void |
setNodeId(org.apache.hadoop.yarn.api.records.NodeId nodeId) |
createIdentifier, createNewMasterKey, createNMToken, createPassword, getCurrentKey, newInstance, retrivePasswordInternalpublic NMTokenSecretManagerInNM()
public NMTokenSecretManagerInNM(NMStateStoreService stateStore)
public void recover()
throws IOException
IOException@InterfaceAudience.Private public void setMasterKey(org.apache.hadoop.yarn.server.api.records.MasterKey masterKey)
public byte[] retrievePassword(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
retrievePassword in class org.apache.hadoop.yarn.server.security.BaseNMTokenSecretManagerorg.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void appFinished(org.apache.hadoop.yarn.api.records.ApplicationId appId)
public void appAttemptStartContainer(org.apache.hadoop.yarn.security.NMTokenIdentifier identifier)
throws org.apache.hadoop.security.token.SecretManager.InvalidToken
org.apache.hadoop.security.token.SecretManager.InvalidTokenpublic void setNodeId(org.apache.hadoop.yarn.api.records.NodeId nodeId)
@InterfaceAudience.Private public boolean isAppAttemptNMTokenKeyPresent(org.apache.hadoop.yarn.api.records.ApplicationAttemptId appAttemptId)
@InterfaceAudience.Private public org.apache.hadoop.yarn.api.records.NodeId getNodeId()
public org.apache.hadoop.yarn.api.records.NMToken generateNMToken(String applicationSubmitter, org.apache.hadoop.yarn.api.records.Container container)
applicationSubmitter - container - Copyright © 2008–2023 Apache Software Foundation. All rights reserved.