org.apache.hadoop.hive.llap.security

Class LlapExtClientJwtHelper

java.lang.Object

org.apache.hadoop.hive.llap.security.LlapExtClientJwtHelper

public class LlapExtClientJwtHelper
extends Object

Contains helper methods for generating and verifying JWTs for external llap clients. Initializes and uses JwtSecretProvider to obtain encryption and decryption secret.

Field Summary

Fields

Modifier and Type	Field and Description
static String	LLAP_EXT_CLIENT_APP_ID
static String	LLAP_JWT_SUBJECT

Constructor Summary

Constructors

Constructor and Description
LlapExtClientJwtHelper(org.apache.hadoop.conf.Configuration conf)

Method Summary

Modifier and Type	Method and Description
String	buildJwtForLlap(org.apache.hadoop.yarn.api.records.ApplicationId extClientAppId)
io.jsonwebtoken.Jws<io.jsonwebtoken.Claims>	parseClaims(String jwt)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

LLAP_JWT_SUBJECT

public static final String LLAP_JWT_SUBJECT

See Also:

Constant Field Values

LLAP_EXT_CLIENT_APP_ID

public static final String LLAP_EXT_CLIENT_APP_ID

See Also:

Constant Field Values

Constructor Detail

LlapExtClientJwtHelper

public LlapExtClientJwtHelper(org.apache.hadoop.conf.Configuration conf)

Method Detail

buildJwtForLlap

public String buildJwtForLlap(org.apache.hadoop.yarn.api.records.ApplicationId extClientAppId)

Parameters:

extClientAppId - application Id - application Id injected by get_splits

Returns:

JWT signed with JwtSecretProvider.getEncryptionSecret(). As of now this JWT contains extClientAppId in claims.

parseClaims

public io.jsonwebtoken.Jws<io.jsonwebtoken.Claims> parseClaims(String jwt)

Parameters:

jwt - signed JWT String

Returns:

claims present in JWT, this method parses jwt using JwtSecretProvider.getDecryptionSecret()