Hive
  1. Hive
  2. HIVE-5155

Support secure proxy user access to HiveServer2

    Details

    • Type: Improvement Improvement
    • Status: Resolved
    • Priority: Major Major
    • Resolution: Fixed
    • Affects Version/s: 0.12.0
    • Fix Version/s: 0.13.0
    • Labels:
      None

      Description

      The HiveServer2 can authenticate a client using via Kerberos and impersonate the connecting user with underlying secure hadoop. This becomes a gateway for a remote client to access secure hadoop cluster. Now this works fine for when the client obtains Kerberos ticket and directly connects to HiveServer2. There's another big use case for middleware tools where the end user wants to access Hive via another server. For example Oozie action or Hue submitting queries or a BI tool server accessing to HiveServer2. In these cases, the third party server doesn't have end user's Kerberos credentials and hence it can't submit queries to HiveServer2 on behalf of the end user.

      This ticket is for enabling proxy access to HiveServer2 for third party tools on behalf of end users. There are two parts of the solution proposed in this ticket:
      1) Delegation token based connection for Oozie (OOZIE-1457)
      This is the common mechanism for Hadoop ecosystem components. Hive Remote Metastore and HCatalog already support this. This is suitable for tool like Oozie that submits the MR jobs as actions on behalf of its client. Oozie already uses similar mechanism for Metastore/HCatalog access.

      2) Direct proxy access for privileged hadoop users
      The delegation token implementation can be a challenge for non-hadoop (especially non-java) components. This second part enables a privileged user to directly specify an alternate session user during the connection. If the connecting user has hadoop level privilege to impersonate the requested userid, then HiveServer2 will run the session as that requested user. For example, user Hue is allowed to impersonate user Bob (via core-site.xml proxy user configuration). Then user Hue can connect to HiveServer2 and specify Bob as session user via a session property. HiveServer2 will verify Hue's proxy user privilege and then impersonate user Bob instead of Hue. This will enable any third party tool to impersonate alternate userid without having to implement delegation token connection.

      1. HIVE-5155.5.patch
        389 kB
        Prasad Mujumdar
      2. HIVE-5155.4.patch
        389 kB
        Prasad Mujumdar
      3. HIVE-5155-noThrift.8.patch
        82 kB
        Prasad Mujumdar
      4. HIVE-5155-noThrift.7.patch
        82 kB
        Prasad Mujumdar
      5. TestKERBEROS_Hive_JDBC.java
        5 kB
        Shivaraju Gowda
      6. HIVE-5155-noThrift.6.patch
        62 kB
        Prasad Mujumdar
      7. ProxyAuth.out
        13 kB
        Prasad Mujumdar
      8. ProxyAuth.java
        12 kB
        Prasad Mujumdar
      9. HIVE-5155-noThrift.5.patch
        60 kB
        Prasad Mujumdar
      10. HIVE-5155-noThrift.4.patch
        43 kB
        Prasad Mujumdar
      11. HIVE-5155.3.patch
        349 kB
        Prasad Mujumdar
      12. HIVE-5155-noThrift.2.patch
        45 kB
        Prasad Mujumdar
      13. HIVE-5155.2.patch
        349 kB
        Prasad Mujumdar
      14. HIVE-5155.1.patch
        349 kB
        Prasad Mujumdar
      15. HIVE-5155-1-nothrift.patch
        45 kB
        Prasad Mujumdar

        Issue Links

          Activity

          Hide
          Vaibhav Gumashta added a comment -

          Prasad Mujumdar The relevant question is regarding the intent of (hiveAuthFactory == null) in ThriftCLIService. Thanks!

          Show
          Vaibhav Gumashta added a comment - Prasad Mujumdar The relevant question is regarding the intent of (hiveAuthFactory == null) in ThriftCLIService. Thanks!
          Hide
          Vaibhav Gumashta added a comment -
          Show
          Vaibhav Gumashta added a comment - Hi Prasad Mujumdar , I had a question: https://reviews.apache.org/r/13845/#comment71937 . Thanks!
          Hide
          Lefty Leverenz added a comment -

          I agree with Vaibhav Gumashta, this needs release / usage notes. Also documentation in the wiki.

          I can add hive.server2.allow.user.substitution to the Configuration Properties doc, but someone else should document the concepts and usage. Prasad Mujumdar, would that be your task?

          Show
          Lefty Leverenz added a comment - I agree with Vaibhav Gumashta , this needs release / usage notes. Also documentation in the wiki. I can add hive.server2.allow.user.substitution to the Configuration Properties doc, but someone else should document the concepts and usage. Prasad Mujumdar , would that be your task?
          Hide
          Vaibhav Gumashta added a comment -

          Prasad Mujumdar I think we should add release / usage notes for this.

          Show
          Vaibhav Gumashta added a comment - Prasad Mujumdar I think we should add release / usage notes for this.
          Hide
          Thejas M Nair added a comment -

          Patch committed to trunk and 0.13 branch (this is included in the list for 0.13 maintained by Harish).
          Thanks for the contribution Prasad Mujumdar. Thanks for reviews Vaibhav, Brock.

          Show
          Thejas M Nair added a comment - Patch committed to trunk and 0.13 branch (this is included in the list for 0.13 maintained by Harish). Thanks for the contribution Prasad Mujumdar . Thanks for reviews Vaibhav, Brock.
          Hide
          Vaibhav Gumashta added a comment -

          Prasad Mujumdar Left a comment on rb, but I think if HIVE-6312 (by Navis) gets in, it will address the issue. Thanks!

          Show
          Vaibhav Gumashta added a comment - Prasad Mujumdar Left a comment on rb, but I think if HIVE-6312 (by Navis ) gets in, it will address the issue. Thanks!
          Hide
          Thejas M Nair added a comment -

          I am planning to commit this soon, lets increment the version number in a followup jira.

          Show
          Thejas M Nair added a comment - I am planning to commit this soon, lets increment the version number in a followup jira.
          Hide
          Vaibhav Gumashta added a comment -

          Prasad Mujumdar I agree. It would be awesome if you can post the new patch.

          I have one more comment (I'll add to rb), but we can definitely take that up in a follow up jira

          Show
          Vaibhav Gumashta added a comment - Prasad Mujumdar I agree. It would be awesome if you can post the new patch. I have one more comment (I'll add to rb), but we can definitely take that up in a follow up jira
          Hide
          Prasad Mujumdar added a comment -

          Vaibhav Gumashta Good catch. Given that we are changing the version on every major interface change, this should cover that as well. It's a trivial change, I do have a patch ready.

          Thejas M Nair let me know if you want to review another update for this ticket or update that in a follow up patch. Thanks!

          Show
          Prasad Mujumdar added a comment - Vaibhav Gumashta Good catch. Given that we are changing the version on every major interface change, this should cover that as well. It's a trivial change, I do have a patch ready. Thejas M Nair let me know if you want to review another update for this ticket or update that in a follow up patch. Thanks!
          Hide
          Vaibhav Gumashta added a comment -

          Prasad Mujumdar Actually one thing I noticed we missed: bumping up the version number to V7 (since we changed the thrift interface)... Sorry for pointing out so late. But we can take that up in a follow up patch.

          Show
          Vaibhav Gumashta added a comment - Prasad Mujumdar Actually one thing I noticed we missed: bumping up the version number to V7 (since we changed the thrift interface)... Sorry for pointing out so late. But we can take that up in a follow up patch.
          Hide
          Hive QA added a comment -

          Overall: +1 all checks pass

          Here are the results of testing the latest attachment:
          https://issues.apache.org/jira/secure/attachment/12633746/HIVE-5155.5.patch

          SUCCESS: +1 5378 tests passed

          Test results: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1705/testReport
          Console output: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1705/console

          Messages:

          Executing org.apache.hive.ptest.execution.PrepPhase
          Executing org.apache.hive.ptest.execution.ExecutionPhase
          Executing org.apache.hive.ptest.execution.ReportingPhase
          

          This message is automatically generated.

          ATTACHMENT ID: 12633746

          Show
          Hive QA added a comment - Overall : +1 all checks pass Here are the results of testing the latest attachment: https://issues.apache.org/jira/secure/attachment/12633746/HIVE-5155.5.patch SUCCESS: +1 5378 tests passed Test results: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1705/testReport Console output: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1705/console Messages: Executing org.apache.hive.ptest.execution.PrepPhase Executing org.apache.hive.ptest.execution.ExecutionPhase Executing org.apache.hive.ptest.execution.ReportingPhase This message is automatically generated. ATTACHMENT ID: 12633746
          Hide
          Thejas M Nair added a comment -

          +1

          Show
          Thejas M Nair added a comment - +1
          Hide
          Prasad Mujumdar added a comment -

          Address test ptest failures.

          • Fixed TestSessionHooks test
          • Removed the extra transport getting layered in JDBC connection

          Diff without generated code is added to review request.

          Show
          Prasad Mujumdar added a comment - Address test ptest failures. Fixed TestSessionHooks test Removed the extra transport getting layered in JDBC connection Diff without generated code is added to review request.
          Hide
          Prasad Mujumdar added a comment -

          Thejas M Nair will take a look shortly. Thanks!

          Show
          Prasad Mujumdar added a comment - Thejas M Nair will take a look shortly. Thanks!
          Hide
          Thejas M Nair added a comment -

          Prasad Mujumdar Can you please check if the test failures are caused by the patch ?

          Show
          Thejas M Nair added a comment - Prasad Mujumdar Can you please check if the test failures are caused by the patch ?
          Hide
          Hive QA added a comment -

          Overall: -1 at least one tests failed

          Here are the results of testing the latest attachment:
          https://issues.apache.org/jira/secure/attachment/12633424/HIVE-5155.4.patch

          ERROR: -1 due to 4 failed/errored test(s), 5375 tests executed
          Failed tests:

          org.apache.hive.jdbc.TestSSL.testSSLConnectionWithProperty
          org.apache.hive.jdbc.TestSSL.testSSLConnectionWithURL
          org.apache.hive.jdbc.TestSSL.testSSLFetch
          org.apache.hive.service.cli.session.TestSessionHooks.testProxyUser
          

          Test results: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1673/testReport
          Console output: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1673/console

          Messages:

          Executing org.apache.hive.ptest.execution.PrepPhase
          Executing org.apache.hive.ptest.execution.ExecutionPhase
          Executing org.apache.hive.ptest.execution.ReportingPhase
          Tests exited with: TestsFailedException: 4 tests failed
          

          This message is automatically generated.

          ATTACHMENT ID: 12633424

          Show
          Hive QA added a comment - Overall : -1 at least one tests failed Here are the results of testing the latest attachment: https://issues.apache.org/jira/secure/attachment/12633424/HIVE-5155.4.patch ERROR: -1 due to 4 failed/errored test(s), 5375 tests executed Failed tests: org.apache.hive.jdbc.TestSSL.testSSLConnectionWithProperty org.apache.hive.jdbc.TestSSL.testSSLConnectionWithURL org.apache.hive.jdbc.TestSSL.testSSLFetch org.apache.hive.service.cli.session.TestSessionHooks.testProxyUser Test results: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1673/testReport Console output: http://bigtop01.cloudera.org:8080/job/PreCommit-HIVE-Build/1673/console Messages: Executing org.apache.hive.ptest.execution.PrepPhase Executing org.apache.hive.ptest.execution.ExecutionPhase Executing org.apache.hive.ptest.execution.ReportingPhase Tests exited with: TestsFailedException: 4 tests failed This message is automatically generated. ATTACHMENT ID: 12633424
          Hide
          Prasad Mujumdar added a comment -

          Full patch with thrift generated code. Rebased with trunk, had a conflict in hive-default.xml.template that's is resolved.

          Show
          Prasad Mujumdar added a comment - Full patch with thrift generated code. Rebased with trunk, had a conflict in hive-default.xml.template that's is resolved.
          Hide
          Prasad Mujumdar added a comment -

          Thejas M Nair and Vaibhav Gumashta Thanks for the review
          I agree that it's good to cancel the token at the end of the session. There's a GC thread that removes the expired tokens, but the default interval is 1day. I will log a followup ticket and submit a patch.

          Show
          Prasad Mujumdar added a comment - Thejas M Nair and Vaibhav Gumashta Thanks for the review I agree that it's good to cancel the token at the end of the session. There's a GC thread that removes the expired tokens, but the default interval is 1day. I will log a followup ticket and submit a patch.
          Hide
          Thejas M Nair added a comment -

          Prasad Mujumdar Can you upload the patch with thrift generated files so that the tests can run on it ?

          Show
          Thejas M Nair added a comment - Prasad Mujumdar Can you upload the patch with thrift generated files so that the tests can run on it ?
          Hide
          Thejas M Nair added a comment -

          +1
          I have a question - Should we cancel the token from HiveSession.close() ? (Even if it is a good thing, we can do it in a followup jira).

          Show
          Thejas M Nair added a comment - +1 I have a question - Should we cancel the token from HiveSession.close() ? (Even if it is a good thing, we can do it in a followup jira).
          Hide
          Vaibhav Gumashta added a comment -

          +1 (non-binding). Latest patch looks good to me. Thanks for the patch Prasad Mujumdar!

          Show
          Vaibhav Gumashta added a comment - +1 (non-binding). Latest patch looks good to me. Thanks for the patch Prasad Mujumdar !
          Hide
          Prasad Mujumdar added a comment -

          Thejas M Nair & Vaibhav Gumashta The rebased patch is attached and review updated y'day. I found a minor rebase conflict that I just fixed. Please take a look when you get a chance. Thanks!

          Show
          Prasad Mujumdar added a comment - Thejas M Nair & Vaibhav Gumashta The rebased patch is attached and review updated y'day. I found a minor rebase conflict that I just fixed. Please take a look when you get a chance. Thanks!
          Hide
          Vaibhav Gumashta added a comment -

          Prasad Mujumdar Thanks a lot for the heads up Prasad!

          Show
          Vaibhav Gumashta added a comment - Prasad Mujumdar Thanks a lot for the heads up Prasad!
          Hide
          Thejas M Nair added a comment -

          Prasad Mujumdar Yes, I think putting this in hive-site.xml is a reasonable way to restrict proxy user privileges to hs2.

          Owen O'Malley Please refer to the conversation in reviewboard about the config settings.

          Show
          Thejas M Nair added a comment - Prasad Mujumdar Yes, I think putting this in hive-site.xml is a reasonable way to restrict proxy user privileges to hs2. Owen O'Malley Please refer to the conversation in reviewboard about the config settings.
          Hide
          Prasad Mujumdar added a comment -

          Thejas M Nair I responded to your comments on the review board. Please let me your feedback.

          Vaibhav Gumashta Thanks for the offer. I am working on rebase and testing the updated patch.

          Show
          Prasad Mujumdar added a comment - Thejas M Nair I responded to your comments on the review board. Please let me your feedback. Vaibhav Gumashta Thanks for the offer. I am working on rebase and testing the updated patch.
          Hide
          Vaibhav Gumashta added a comment -

          Thejas M Nair Prasad Mujumdar I agree it will be very useful in 0.13.

          Prasad, let me know if you'd like me to pitch in; I have some free cycles. Thanks!

          Show
          Vaibhav Gumashta added a comment - Thejas M Nair Prasad Mujumdar I agree it will be very useful in 0.13. Prasad, let me know if you'd like me to pitch in; I have some free cycles. Thanks!
          Hide
          Thejas M Nair added a comment -

          Prasad Mujumdar Thanks Prasad. Please see if you can contribute this for 0.13 release.

          Show
          Thejas M Nair added a comment - Prasad Mujumdar Thanks Prasad. Please see if you can contribute this for 0.13 release.
          Hide
          Prasad Mujumdar added a comment -

          Thejas M Nair My apologies for the delay. I was busy with a bunch of other things and didn't get a chance to revisit the patch. I will take a look at the review comments and update the patch soon. Thanks!

          Show
          Prasad Mujumdar added a comment - Thejas M Nair My apologies for the delay. I was busy with a bunch of other things and didn't get a chance to revisit the patch. I will take a look at the review comments and update the patch soon. Thanks!
          Hide
          Lefty Leverenz added a comment -

          Just for the record: patch noThrift.6 adds hive.server2.allow.user.substitution to HiveConf.java and hive-default.xml.template.

          Show
          Lefty Leverenz added a comment - Just for the record: patch noThrift.6 adds hive.server2.allow.user.substitution to HiveConf.java and hive-default.xml.template.
          Hide
          Thejas M Nair added a comment -

          Prasad, It would be great to get this patch in for 0.13 release.
          I think just the issue of proxy user config parameter needs to be addressed. ie having a specific config for HS2 proxy privileges so that the user does not have to be made a hdfs/MR wide proxy user.

          Show
          Thejas M Nair added a comment - Prasad, It would be great to get this patch in for 0.13 release. I think just the issue of proxy user config parameter needs to be addressed. ie having a specific config for HS2 proxy privileges so that the user does not have to be made a hdfs/MR wide proxy user.
          Hide
          Thejas M Nair added a comment -

          Prasad, I also have some comments in review board. One of them is on the lines of Owen's comment above.

          Show
          Thejas M Nair added a comment - Prasad, I also have some comments in review board. One of them is on the lines of Owen's comment above.
          Hide
          Prasad Mujumdar added a comment -

          Thejas M Nair Thanks! I will rebase the patch and add dock notes.

          Show
          Prasad Mujumdar added a comment - Thejas M Nair Thanks! I will rebase the patch and add dock notes.
          Hide
          Owen O'Malley added a comment -

          Since this patch is adding proxy users for HiveServer2, it really should include the same ability to limit the authority of the proxy users that the other Hadoop tools have. To make it consistent with Hadoop, the configuration would look like:

           <property>
              <name>hive.server2.proxyuser.HS.hosts</name>
              <value>host1,host2</value>
            </property>
            <property>
              <name>hive.server2.proxyuser.HS.groups</name>
              <value>group1,group2</value>
            </property>
          

          which configures HS as a hive server2 proxy user and limits it to working on a specified set of hosts (or * for all) and impersonating a specified group of users (or * for all).

          Show
          Owen O'Malley added a comment - Since this patch is adding proxy users for HiveServer2, it really should include the same ability to limit the authority of the proxy users that the other Hadoop tools have. To make it consistent with Hadoop, the configuration would look like: <property> <name>hive.server2.proxyuser.HS.hosts</name> <value>host1,host2</value> </property> <property> <name>hive.server2.proxyuser.HS.groups</name> <value>group1,group2</value> </property> which configures HS as a hive server2 proxy user and limits it to working on a specified set of hosts (or * for all) and impersonating a specified group of users (or * for all).
          Hide
          Thejas M Nair added a comment -

          Can you also please add the documentation for this change to the release note section, including example of the hive connection string to be used for proxy user. We can work on putting it in appropriate sections in wiki once this is committed.

          Show
          Thejas M Nair added a comment - Can you also please add the documentation for this change to the release note section, including example of the hive connection string to be used for proxy user. We can work on putting it in appropriate sections in wiki once this is committed.
          Hide
          Thejas M Nair added a comment -

          Hi Prasad,
          Sorry about the delay in reviewing this. I have added some comments to reviewboard.

          Show
          Thejas M Nair added a comment - Hi Prasad, Sorry about the delay in reviewing this. I have added some comments to reviewboard.
          Hide
          Shivaraju Gowda added a comment -

          It is important to note that the middle ware server does not have access to Principal's credentials. All it has is a javax.security.auth.Subject("Subject") from the end-user(Principal) and can do a Subject.doAS() to connect to HiveServer2. In Proposal 2, the middle ware server is expected to have access to Hadoop-level super-user's credentials(by doing "kinit") or it has the Subject from a Hadoop-level super-user which has been passed on to it. In the code I have attached above, I am trying to show that any end-user's Subject can be effectively used to connect to HiveServer2 using Subject.doAs() in the middle ware server. This will allow multi-user kerberos access through the middleware server without additional requirements of proxy access. I might have overlooked or be unaware of some limitations of such an approach, so I am soliciting feedback to check that.

          Show
          Shivaraju Gowda added a comment - It is important to note that the middle ware server does not have access to Principal's credentials. All it has is a javax.security.auth.Subject("Subject") from the end-user(Principal) and can do a Subject.doAS() to connect to HiveServer2. In Proposal 2, the middle ware server is expected to have access to Hadoop-level super-user's credentials(by doing "kinit") or it has the Subject from a Hadoop-level super-user which has been passed on to it. In the code I have attached above, I am trying to show that any end-user's Subject can be effectively used to connect to HiveServer2 using Subject.doAs() in the middle ware server. This will allow multi-user kerberos access through the middleware server without additional requirements of proxy access. I might have overlooked or be unaware of some limitations of such an approach, so I am soliciting feedback to check that.
          Hide
          Shivaraju Gowda added a comment -

          Test Script for Subject.doAs().

          Show
          Shivaraju Gowda added a comment - Test Script for Subject.doAs().
          Hide
          Shivaraju Gowda added a comment -

          I am trying to accomplish the same task, i.e end user wants to access Hive via middleware server and the middleware server doesn't have access to the credentials. I looked at it from a different angle though using Subject.doAs and could get it working with a little hack on the client side(no changes to hive binaries). I Wanted to check if there are any issues with this approach. Please see the attached file TestKERBEROS_Hive_JDBC.java. Obviously, the hack is not a good way to go, longer term it needs to be addressed in the Hive/Hadoop code, but wanted to point what is missing in the Hive code to accomplish support for multi-user kerberos support through middleware server.

          Show
          Shivaraju Gowda added a comment - I am trying to accomplish the same task, i.e end user wants to access Hive via middleware server and the middleware server doesn't have access to the credentials. I looked at it from a different angle though using Subject.doAs and could get it working with a little hack on the client side(no changes to hive binaries). I Wanted to check if there are any issues with this approach. Please see the attached file TestKERBEROS_Hive_JDBC.java. Obviously, the hack is not a good way to go, longer term it needs to be addressed in the Hive/Hadoop code, but wanted to point what is missing in the Hive code to accomplish support for multi-user kerberos support through middleware server.
          Hide
          Prasad Mujumdar added a comment -

          Attached a Ad hoc integration test and results. It requires Kerberos and secure cluster setup.

          Show
          Prasad Mujumdar added a comment - Attached a Ad hoc integration test and results. It requires Kerberos and secure cluster setup.
          Hide
          Prasad Mujumdar added a comment -

          Hey Thejas M Nair no problem. I agree that it would be a bit risky to add large feature just before the RC.
          Let's try get this into 0.13. Please take a look when you get a chance. Thanks!

          Show
          Prasad Mujumdar added a comment - Hey Thejas M Nair no problem. I agree that it would be a bit risky to add large feature just before the RC. Let's try get this into 0.13. Please take a look when you get a chance. Thanks!
          Hide
          Thejas M Nair added a comment -

          This looks like a very valuable feature, but it is also a big one (new interfaces). I will not be able to finish reviewing it tonight. I will try to finish reviewing over the weekend.
          I think it is too late to include this major feature in hive 0.12. I have been including only important bug fixes in last few days to stabilize the release (as I earlier mentioned in the email to dev list) . I am sorry, I should have reviewed it earlier so that we had enough time.

          Show
          Thejas M Nair added a comment - This looks like a very valuable feature, but it is also a big one (new interfaces). I will not be able to finish reviewing it tonight. I will try to finish reviewing over the weekend. I think it is too late to include this major feature in hive 0.12. I have been including only important bug fixes in last few days to stabilize the release (as I earlier mentioned in the email to dev list) . I am sorry, I should have reviewed it earlier so that we had enough time.
          Hide
          Thejas M Nair added a comment -

          Sorry about the delay in looking at the patch. I was hoping to get an RC out for 0.12 this weekend, and was planning to add only any blocker bug fixes to the branch until then. I will take a look at the patch tonight and see if I can get it into 0.12 .

          Show
          Thejas M Nair added a comment - Sorry about the delay in looking at the patch. I was hoping to get an RC out for 0.12 this weekend, and was planning to add only any blocker bug fixes to the branch until then. I will take a look at the patch tonight and see if I can get it into 0.12 .
          Hide
          Prasad Mujumdar added a comment -

          Brock Noland & Thejas M Nair Can we please consider this for 0.12. Its also blocking Oozie. Thanks!

          Show
          Prasad Mujumdar added a comment - Brock Noland & Thejas M Nair Can we please consider this for 0.12. Its also blocking Oozie. Thanks!
          Hide
          Prasad Mujumdar added a comment -

          Rebased patch

          Show
          Prasad Mujumdar added a comment - Rebased patch
          Hide
          Prasad Mujumdar added a comment -

          Test program to exercise proxy connection options with output.

          Show
          Prasad Mujumdar added a comment - Test program to exercise proxy connection options with output.
          Hide
          Prasad Mujumdar added a comment -

          Rebased patch without thrift generated code.

          Show
          Prasad Mujumdar added a comment - Rebased patch without thrift generated code.
          Hide
          Prasad Mujumdar added a comment -

          Sure, I will rebase again and upload attach the with-thrift patch for test run. Thanks!

          Show
          Prasad Mujumdar added a comment - Sure, I will rebase again and upload attach the with-thrift patch for test run. Thanks!
          Hide
          Brock Noland added a comment -

          I agree that oozie support would be great. 0.12 would be ideal. Prasad, can you upload the v3 patch without thrift?

          Show
          Brock Noland added a comment - I agree that oozie support would be great. 0.12 would be ideal. Prasad, can you upload the v3 patch without thrift?
          Hide
          Alejandro Abdelnur added a comment -

          We would like to include support for HiveServer2 in Oozie, OOZIE-1457. Any ETA on this JIRA getting committed and in a Hive release?

          Show
          Alejandro Abdelnur added a comment - We would like to include support for HiveServer2 in Oozie, OOZIE-1457 . Any ETA on this JIRA getting committed and in a Hive release?
          Hide
          Hive QA added a comment -

          Overall: -1 at least one tests failed

          Here are the results of testing the latest attachment:
          https://issues.apache.org/jira/secure/attachment/12603083/HIVE-5155.3.patch

          ERROR: -1 due to 1 failed/errored test(s), 3107 tests executed
          Failed tests:

          org.apache.hive.jdbc.TestJdbcDriver2.testBadURL
          

          Test results: https://builds.apache.org/job/PreCommit-HIVE-Build/745/testReport
          Console output: https://builds.apache.org/job/PreCommit-HIVE-Build/745/console

          Messages:

          Executing org.apache.hive.ptest.execution.PrepPhase
          Executing org.apache.hive.ptest.execution.ExecutionPhase
          Executing org.apache.hive.ptest.execution.ReportingPhase
          Tests failed with: TestsFailedException: 1 tests failed
          

          This message is automatically generated.

          Show
          Hive QA added a comment - Overall : -1 at least one tests failed Here are the results of testing the latest attachment: https://issues.apache.org/jira/secure/attachment/12603083/HIVE-5155.3.patch ERROR: -1 due to 1 failed/errored test(s), 3107 tests executed Failed tests: org.apache.hive.jdbc.TestJdbcDriver2.testBadURL Test results: https://builds.apache.org/job/PreCommit-HIVE-Build/745/testReport Console output: https://builds.apache.org/job/PreCommit-HIVE-Build/745/console Messages: Executing org.apache.hive.ptest.execution.PrepPhase Executing org.apache.hive.ptest.execution.ExecutionPhase Executing org.apache.hive.ptest.execution.ReportingPhase Tests failed with: TestsFailedException: 1 tests failed This message is automatically generated.
          Hide
          Prasad Mujumdar added a comment -

          Rebased with latest trunk

          Show
          Prasad Mujumdar added a comment - Rebased with latest trunk
          Hide
          Prasad Mujumdar added a comment -

          Thejas M Nair Would you like to take a look at the patch ?

          Show
          Prasad Mujumdar added a comment - Thejas M Nair Would you like to take a look at the patch ?
          Hide
          Prasad Mujumdar added a comment -
          Show
          Prasad Mujumdar added a comment - Review request at https://reviews.apache.org/r/13845/
          Hide
          Prasad Mujumdar added a comment -

          Simple client application to test various direct and proxy connection to HiveServer2

          Show
          Prasad Mujumdar added a comment - Simple client application to test various direct and proxy connection to HiveServer2

            People

            • Assignee:
              Prasad Mujumdar
              Reporter:
              Prasad Mujumdar
            • Votes:
              2 Vote for this issue
              Watchers:
              14 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Development