[ATLAS-2557] Fix to allow to lookup hadoop ldap groups when are groups from UGI are wrongly set or are not empty - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.8.2
Fix Version/s: 1.0.0, 0.8.3
Component/s: None
Labels:
None

Description

Currently, groups from hadoop mapping are read only when grantedAuths from UGi is empty, but there is a case when groups synced in ugi are wrong or incomplete, in this case reading groups from hadoop ldap group mapping can help to get all groups.

consider below example for ldap user hr1 who has hadoop-users, hr, hr1 in ldap

[root@log111 ~]# id hr1
uid=1014(hr1) gid=1014(hr1) groups=1014(hr1)

groups read from UGI is hr1

----------------------------------------------------------------

[root@log111 ~]# hdfs groups hr1
hr1 : hadoop-users hr hr1

groups read from hadoop ldap group mapping

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

ATLAS-2557.patch
12/Apr/18 20:03
4 kB
Nixon Rodrigues

Issue Links

links to

Review Request

Activity

People

Assignee:: Nixon Rodrigues

Reporter:: Nixon Rodrigues

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 12/Apr/18 19:53

Updated:: 29/Aug/18 07:08

Resolved:: 13/Apr/18 16:09