You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add following configuration:
spark.security.group.acls.enable: true|false to enable/disable group acl check
spark.security.groupMappingProvider: to config the implement for getting groups for user,
the default value: org.apache.spark.util.ShellBasedUnixGroupsMapping
The group acls can be configured with: "spark.ui.view.acls", "spark.modify.acls", "spark.admin.acls", for example:
spark.ui.view.acls : user1,user2|group1,group2
The user list and group list will be splitted by '|'.
I would like to bring up an opportunity for re-use.
with in the mapred-site.xml (for our implementation) we are using the following to allow access to mapreduce logs ...etc..
Why reinvent the wheel, most often the users/groups for both MR and Spark would be the some or all of the same user/groups.
My suggestion is to create a common list/set of properties between MR and Spark for acls. Instead of maintaining two separate lists
mapreduce.cluster.acls.enabled = true
mapreduce.job.acl-view-job=mapred,hue,* group-name
mapreduce.job.acl-modify-job=mapred,hue,* group-name
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Add following configuration:
spark.security.group.acls.enable: true|false to enable/disable group acl check
spark.security.groupMappingProvider: to config the implement for getting groups for user,
the default value: org.apache.spark.util.ShellBasedUnixGroupsMapping
The group acls can be configured with: "spark.ui.view.acls", "spark.modify.acls", "spark.admin.acls", for example:
spark.ui.view.acls : user1,user2|group1,group2
The user list and group list will be splitted by '|'.