@InterfaceAudience.Public @InterfaceStability.Evolving public abstract class BaseClientToAMTokenSecretManager extends SecretManager<ClientToAMTokenIdentifier>
SecretManager
for AMs to extend and validate Client-RM tokens
issued to clients by the RM using the underlying master-key shared by RM to
the AMs on their launch. All the methods are called by either Hadoop RPC or
YARN, so this class is strictly for the purpose of inherit/extend and
register with Hadoop RPC.SecretManager.InvalidToken
Constructor and Description |
---|
BaseClientToAMTokenSecretManager() |
Modifier and Type | Method and Description |
---|---|
ClientToAMTokenIdentifier |
createIdentifier()
Create an empty token identifier.
|
byte[] |
createPassword(ClientToAMTokenIdentifier identifier)
Create the password for the given identifier.
|
abstract SecretKey |
getMasterKey(ApplicationAttemptId applicationAttemptId) |
byte[] |
retrievePassword(ClientToAMTokenIdentifier identifier)
Retrieve the password for the given token identifier.
|
checkAvailableForRead, createPassword, createSecretKey, generateSecret
@InterfaceAudience.Private public abstract SecretKey getMasterKey(ApplicationAttemptId applicationAttemptId)
@InterfaceAudience.Private public byte[] createPassword(ClientToAMTokenIdentifier identifier)
SecretManager
createPassword
in class SecretManager<ClientToAMTokenIdentifier>
identifier
- the identifier to use@InterfaceAudience.Private public byte[] retrievePassword(ClientToAMTokenIdentifier identifier) throws SecretManager.InvalidToken
SecretManager
retrievePassword
in class SecretManager<ClientToAMTokenIdentifier>
identifier
- the identifier to validateSecretManager.InvalidToken
- the token was invalid@InterfaceAudience.Private public ClientToAMTokenIdentifier createIdentifier()
SecretManager
createIdentifier
in class SecretManager<ClientToAMTokenIdentifier>
Copyright © 2013 Apache Software Foundation. All rights reserved.