Thanasis Naskos / Deploy Hadoop _btj edition_

Blame view

templates/hadoop121/hadoop-policy.xml 4.54 KB
edit raw normal view history
f795df3ae   Thanasis Naskos   initial commit 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
 
  <?xml version="1.0"?>
  <?xml-stylesheet type="text/xsl" href="configuration.xsl"?>
  
  <!-- Put site-specific property overrides in this file. -->
  
  <configuration>
    <property>
      <name>security.client.protocol.acl</name>
      <value>*</value>
      <description>ACL for ClientProtocol, which is used by user code 
      via the DistributedFileSystem. 
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.client.datanode.protocol.acl</name>
      <value>*</value>
      <description>ACL for ClientDatanodeProtocol, the client-to-datanode protocol 
      for block recovery.
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.datanode.protocol.acl</name>
      <value>*</value>
      <description>ACL for DatanodeProtocol, which is used by datanodes to 
      communicate with the namenode.
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.inter.datanode.protocol.acl</name>
      <value>*</value>
      <description>ACL for InterDatanodeProtocol, the inter-datanode protocol
      for updating generation timestamp.
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.namenode.protocol.acl</name>
      <value>*</value>
      <description>ACL for NamenodeProtocol, the protocol used by the secondary
      namenode to communicate with the namenode.
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.inter.tracker.protocol.acl</name>
      <value>*</value>
      <description>ACL for InterTrackerProtocol, used by the tasktrackers to 
      communicate with the jobtracker.
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.job.submission.protocol.acl</name>
      <value>*</value>
      <description>ACL for JobSubmissionProtocol, used by job clients to 
      communciate with the jobtracker for job submission, querying job status etc.
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.task.umbilical.protocol.acl</name>
      <value>*</value>
      <description>ACL for TaskUmbilicalProtocol, used by the map and reduce 
      tasks to communicate with the parent tasktracker. 
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.refresh.policy.protocol.acl</name>
      <value>*</value>
      <description>ACL for RefreshAuthorizationPolicyProtocol, used by the 
      dfsadmin and mradmin commands to refresh the security policy in-effect. 
      The ACL is a comma-separated list of user and group names. The user and 
      group list is separated by a blank. For e.g. "alice,bob users,wheel". 
      A special value of "*" means all users are allowed.</description>
    </property>
  
    <property>
      <name>security.admin.operations.protocol.acl</name>
      <value>*</value>
      <description>ACL for AdminOperationsProtocol, used by the mradmins commands
      to refresh queues and nodes at JobTracker. The ACL is a comma-separated list of 
      user and group names. The user and group list is separated by a blank. 
      For e.g. "alice,bob users,wheel". A special value of "*" means all users are 
      allowed.</description>
    </property>
  </configuration>