hadoop webhdfs处于安全模式,用户未通过筛选器验证错误

dfty9e19  于 2021-06-03  发布在  Hadoop
关注(0)|答案(1)|浏览(393)

我已经使用kerberos(cdh4.3)将hadoop hdfs配置为启用了安全性。它工作的很好,我可以做所有的操作使用命令行工具。还有其他一些非hadoop集群节点需要通过restapi访问hdfs文件系统,所以我已经启用了webhdfs并配置了kerberos。
对于不涉及临时重定向的操作,我的安全webhdfs可以正常工作:例如liststatus、create directory、remove directory、remove files,所有这些都可以正常工作。但对于创建文件、打开文件等两步操作,失败的信息如下:

  1. [DEV][root@namenode ~]# curl -i --negotiate -u :   -X     
  2. PUT "http: //namenode:50070/webhdfs/v1/tmp/hosts.txt?op=CREATE"
  4. HTTP/1.1 401
  5. Date: Fri, 25 Apr 2014 02:45:48 GMT
  6. Pragma: no-cache
  7. Date: Fri, 25 Apr 2014 02:45:48 GMT
  8. Pragma: no-cache
  9. WWW-Authenticate: Negotiate
  10. Set-Cookie: hadoop.auth=;Path=/;Expires=Thu, 01-Jan-1970 00:00:00 GMT
  11. Content-Length: 0
  12. Server: Jetty(6.1.26.cloudera.2)
  14. HTTP/1.1 307 TEMPORARY_REDIRECT
  15. Cache-Control: no-cache
  16. Expires: Thu, 01-Jan-1970 00:00:00 GMT
  17. Date: Fri, 25 Apr 2014 02:45:48 GMT
  18. Pragma: no-cache
  19. Date: Fri, 25 Apr 2014 02:45:48 GMT
  20. Pragma: no-cache
  21. Set-Cookie:       
  22. hadoop.auth="u=hdfs&p=hdfs@UNIXKRB&t=kerberos&e=1398429948267&s=XhEp/tfs5Pfp04Dp
  23. 9yy1moFPnEo=";Path=/
  24. Location: http: //datanode.net:1006/webhdfs/v1/tmp/hosts.txt?      
  25. op=CREATE&delegation=HgAEaGRmcwRoZGZzAIoBRZbGSGyKAUW60sxsWo4BAhTfG8IRyDJjJ2BSR7K
  26. hveMEo3V4dxJXRUJIREZTIGRlbGVnYXRpb24NMC4wLjAuMDo1MDA3MA&namenoderpcaddress=
  27. namenode.net:8020&overwrite=false
  28. Content-Type: application/octet-stream
  29. Content-Length: 0
  30. Server: Jetty(6.1.26.cloudera.2)
  32. [DEV][root@namenode~]# curl -i -X PUT -T hosts.txt     
  33. http: //datanode.net:1006/webhdfs/v1/tmp/hosts.txt? 
  34. op=CREATE&delegation=HgAEaGRmcwRoZGZzAIoBRZbGSGyKAUW60sxsWo4BAhTfG8IRyDJjJ2
  35. BSR7KhveMEo3V4dxJXRUJIREZTIGRlbGVnYXRpb24NMC4wLjAuMDo1MDA3MA&namenoderpcaddress=
  36. namenode.net:8020&overwrite=false
  37. [2] 19047
  38. [3] 19048
  39. [4] 19049
  40. [DEV][root@namenode~]# HTTP/1.1 100 Continue
  42. HTTP/1.1 401 Unauthorized
  43. Cache-Control: no-cache
  44. Expires: Fri, 25 Apr 2014 02:46:26 GMT
  45. Date: Fri, 25 Apr 2014 02:46:26 GMT
  46. Pragma: no-cache
  47. Expires: Fri, 25 Apr 2014 02:46:26 GMT
  48. Date: Fri, 25 Apr 2014 02:46:26 GMT
  49. Pragma: no-cache
  50. Content-Type: application/json
  51. Transfer-Encoding: chunked
  52. Server: Jetty(6.1.26.cloudera.2)
  54. {"RemoteException":       
  55. {"exception":"SecurityException","javaClassName":"java.lang.SecurityException",
  56. "message":"Failed to obtain user group information: java.io.IOException: 
  57.  Security enabled but user not authenticated by filter"}}
  58. [2]   Done                    curl -i -X PUT -T hosts.txt     
  59. http://datanode.net:1006/webhdfs/v1/tmp/hosts.txt?op=CREATE
  60. [3]   Done                        
  61. delegation=HgAEaGRmcwRoZGZzAIoBRZbGSGyKAUW60sxsWo4BAhTfG8IRyDJjJ2BSR7KhveM
  62. Eo3V4dxJXRUJIREZTIGRlbGVnYXRpb24NMC4wLjAuMDo1MDA3MA
  63. [4]-  Done                    namenoderpcaddress=namenode.net:8020
  64. [DEV][root@namenode ~]#

有人能发光吗?
谢谢,

hadoophdfswebhdfs

1条答案

按热度按时间
czfnxgou

czfnxgou1#

在我的情况下,它运行良好,如下所示:

  1. $ curl -i --negotiate -u : -X PUT "http://nn30.my.dom:50070/webhdfs/v1/tmp/hosts.txt?op=CREATE"
  2. HTTP/1.1 401
  3. Date: Wed, 30 Apr 2014 12:39:24 GMT
  4. Pragma: no-cache
  5. Date: Wed, 30 Apr 2014 12:39:24 GMT
  6. Pragma: no-cache
  7. WWW-Authenticate: Negotiate
  8. Set-Cookie: hadoop.auth=;Path=/;Expires=Thu, 01-Jan-1970 00:00:00 GMT
  9. Content-Length: 0
  10. Server: Jetty(7.6.10.v20130312)
  12. HTTP/1.1 307 Temporary Redirect
  13. Date: Wed, 30 Apr 2014 12:39:24 GMT
  14. Pragma: no-cache
  15. Cache-Control: no-cache
  16. Date: Wed, 30 Apr 2014 12:39:24 GMT
  17. Pragma: no-cache
  18. Set-Cookie: hadoop.auth="u=gpadmin&p=gpadmin@MY.DOM&t=kerberos&e=1398897564735&s=p8haj7KXAsUqj5A2WzoE5VxJYA8=";Path=/
  19. Expires: Thu, 01 Jan 1970 00:00:00 GMT
  20. Location: http ://dn33.my.dom:1006/webhdfs/v1/tmp/hosts.txt?op=CREATE&delegation=IgAHZ3BhZG1pbgdncGFkbWluAIoBRbKli0OKAUXWsg9DAxIUt8i6BG2xt5V4wB4vPpXSPm8MMVMSV0VCSERGUyBkZWxlZ2F0aW9uEzE5Mi4xNjguMTAuMzA6NTAwNzA&namenoderpcaddress=nn30.my.dom:8020&overwrite=false
  21. Content-Type: application/octet-stream
  22. Content-Length: 0
  23. Server: Jetty(7.6.10.v20130312)
  25. $ curl -i -X PUT -T hosts.txt "http://dn33.my.dom:1006/webhdfs/v1/tmp/hosts.txt?op=CREATE&delegation=IgAHZ3BhZG1pbgdncGFkbWluAIoBRbKli0OKAUXWsg9DAxIUt8i6BG2xt5V4wB4vPpXSPm8MMVMSV0VCSERGUyBkZWxlZ2F0aW9uEzE5Mi4xNjguMTAuMzA6NTAwNzA&namenoderpcaddress=nn30.my.dom:8020&overwrite=false"
  26. HTTP/1.1 100 Continue
  28. HTTP/1.1 201 Created
  29. Expires: Wed, 30 Apr 2014 12:42:24 GMT
  30. Date: Wed, 30 Apr 2014 12:42:24 GMT
  31. Pragma: no-cache
  32. Cache-Control: no-cache
  33. Expires: Wed, 30 Apr 2014 12:42:24 GMT
  34. Date: Wed, 30 Apr 2014 12:42:24 GMT
  35. Pragma: no-cache
  36. Location: webhdfs ://nn30.my.dom:50070/tmp/hosts.txt
  37. Content-Type: application/octet-stream
  38. Content-Length: 0
  39. Server: Jetty(7.6.10.v20130312)

注意-如果您的屏幕截图不是经过编辑/修改的,那么您几乎没有语法问题(“”)和打字错误。我打赌你错过了第一个命令的http输入的“”。请在此处查看您的信息-http://hadoop.apache.org/docs/r1.0.4/webhdfs.html
顺便说一句,我用了高清,应该没有太大的区别,虽然。

展开查看全部
赞(0)分享  回复(0)举报  2021-06-03
我来回答

相关问题

    查看更多

    热门标签

    更多
    JavaquerypythonNode开发语言requestUtil数据库Table后端算法LoggerMessageElementParser

    最新问答

    更多
    • 蜀ICP备13028337号-1 大数据知识库 https://www.saoniuhuo.com © All rights reserved
    • 本站内容来源互联网,如果侵犯您的权益请联系我们删除, 联系方式:448109455@qq.com