DPS Installation and Setup
Also available as:
PDF
loading table of contents...

Chapter 9. Examples

Before installing Hortonworks DataPlane Service (DPS), you should configure your clusters for the security options you plan to use.

Example token.xml Topology File with Ranger Enabled

<?xml version="1.0" encoding="UTF-8"?>
<topology>
   <uri>https://$knox-hostname-FQDN:8443/gateway/token</uri>
   <name>token</name>
   <gateway>
      <provider>
         <role>federation</role>
         <name>SSOCookieProvider</name>
         <enabled>true</enabled>
         <param>
            <name>sso.authentication.provider.url</name>
            <value>https://$knox-hostname-FQDN:8443/gateway/knoxsso/api/v1/websso</value>
         </param>
         <param>
            <name>sso.token.verification.pem</name>
            <value>
                $ADD-THE-PUBLIC-KEY-HERE
            </value>
         </param>
      </provider>
      <provider>
         <role>authorization</role>
         <name>XASecurePDPKnox</name>
         <enabled>true</enabled>
      </provider>
      <provider>
         <role>identity-assertion</role>
         <name>HadoopGroupProvider</name>
         <enabled>true</enabled>
      </provider>

   </gateway>
   <service>
      <role>KNOXTOKEN</role>
      <param>
         <name>knox.token.ttl</name>
         <value>500000</value>
      </param>
      <param>
         <name>knox.token.client.data</name>
         <value>cookie.name=hadoop-jwt</value>
      </param>
   </service>
</topology>