The Hortonworks Community Connection is now live. A completely rebuilt Q&A forum, Knowledge Base, Code Hub and more, backed by the experts in the industry.

You will be redirected here in 10 seconds. If your are not redirected, click here to visit the new site.

The legacy Hortonworks Forum is now closed. You can view a read-only version of the former site by clicking here. The site will be taken offline on January 31,2016

YARN Forum

Set user for YARN containers

  • Author
    Replies
  • #50136
    Robert Metzger
    Participant

    Okay, I found out for insecure YARN setups (no kerberos auth), I can use something like

    UserGroupInformation ugi = UserGroupInformation.createRemoteUser("vagrant");
    for(Token<? extends TokenIdentifier> toks : UserGroupInformation.getCurrentUser().getTokens()) {
    ugi.addToken(toks);
    }
    ugi.doAs(new PrivilegedAction<Object>() {

    @Override
    public Object run() {
    ...
    });

    ("vagrant" obviously not being hard-coded)

    I'll now investigate the secure case...

    #81084
    Peter Rudenko
    Moderator

    Did you figured out how to run a command under a user. Have the same issue. Have a next code:

    
    private def setupTokens(username: String): ByteBuffer = {
        val credentials = UserGroupInformation.createProxyUser(username, UserGroupInformation.getCurrentUser).getCredentials
        val dob = new DataOutputBuffer();
        credentials.writeTokenStorageToStream(dob);
        ByteBuffer.wrap(dob.getData(), 0, dob.getLength()).duplicate();
      }
    val cCLC = Records.newRecord(classOf[ContainerLaunchContext])
    cCLC.setTokens(setupTokens(user))

    But it still running under yarn user.

The forum ‘YARN’ is closed to new topics and replies.

Support from the Experts

A HDP Support Subscription connects you experts with deep experience running Apache Hadoop in production, at-scale on the most demanding workloads.

Enterprise Support »

Become HDP Certified

Real world training designed by the core architects of Hadoop. Scenario-based training courses are available in-classroom or online from anywhere in the world

Training »

Hortonworks Data Platform
The Hortonworks Data Platform is a 100% open source distribution of Apache Hadoop that is truly enterprise grade having been built, tested and hardened with enterprise rigor.
Get started with Sandbox
Hortonworks Sandbox is a self-contained virtual machine with Apache Hadoop pre-configured alongside a set of hands-on, step-by-step Hadoop tutorials.
Modern Data Architecture
Tackle the challenges of big data. Hadoop integrates with existing EDW, RDBMS and MPP systems to deliver lower cost, higher capacity infrastructure.