knox-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject svn commit: r1542445 - /incubator/knox/trunk/books/0.3.0/
Date Sat, 16 Nov 2013 01:46:01 GMT
Author: dillidorai
Date: Sat Nov 16 01:46:01 2013
New Revision: 1542445

added notes on missing home directory and OS account


Modified: incubator/knox/trunk/books/0.3.0/
--- incubator/knox/trunk/books/0.3.0/ (original)
+++ incubator/knox/trunk/books/0.3.0/ Sat Nov 16 01:46:01 2013
@@ -126,12 +126,31 @@ TODO:Kevin - What does it look like when
 ### Job Submission Issues - HDFS Home Directories ###
-TODO:Dilli - What does it look like if the LDAP authenticated user doesn't have a HDFS home
directory and submits a job.
+If you see error like the following in your console  while submitting a Job using groovy
shell, it is likely that the authenticated user does not have a home directory on HDFS.
HTTP/1.1 403 Forbidden
HTTP/1.1 403 Forbidden
+You would also see this error if you try file operation on the home directory of the authenticating
+The error would look a little different as shown below  if you are attempting to the operation
with cURL.
denied: user=tom, access=WRITE, inode=\"/user\":hdfs:hdfs:drwxr-xr-x"}}* 
+Create the home directory for the user on HDFS.
+The home directory is typically of the form /user/<userid> and should be owened by
the user.
+user 'hdfs" can create such a directory and make the user owner of the directory.
 ### Job Submission Issues - OS Accounts ###
-TODO:Dilli - What does it look like if the LDAP authenticated user submits a job but doesn't
have an OS account.
+If the hadoop cluster is not secured with Kerberos, The user submitting a job need not have
an OS account on the hadoop nodemanagers.
+If the hadoop cluster is secured with Kerberos, the user submitting the job should have an
OS account on hadoop nodemanagers. 
+In either case if  the user does not have such OS account, his file permissions are based
on user ownership of files or "other" permisison in "ugo" posix permission. The user does
not get any file permission as a member of any group if you are using default

 ### HBase Issues ###

View raw message