apache · blueshift-brasil · Mar 27, 2018 · Mar 27, 2018 · Mar 28, 2018 · Mar 28, 2018
diff --git a/modules/api/src/main/java/org/apache/fluo/api/config/FluoConfiguration.java b/modules/api/src/main/java/org/apache/fluo/api/config/FluoConfiguration.java
@@ -48,6 +48,22 @@ public class FluoConfiguration extends SimpleConfiguration {
 
   // Client properties
   private static final String CLIENT_PREFIX = FLUO_PREFIX + ".client";
+
+  /**
+   * @since 1.2.0
+   */
+  public static final String CLIENT_KERBEROS = CLIENT_PREFIX + ".kerberos";
+
+  /**
+   * @since 1.2.0
+   */
+  public static final String CLIENT_KERBEROS_REALM = CLIENT_PREFIX + ".kerberos.realm";
+
+  /**
+   * @since 1.2.0
+   */
+  public static final String CLIENT_KERBEROS_KEYTAB = CLIENT_PREFIX + ".kerberos.keytab";
+
   /**
    * @deprecated since 1.2.0 replaced by fluo.connection.application.name
    */

diff --git a/modules/core/src/main/java/org/apache/fluo/core/client/FluoAdminImpl.java b/modules/core/src/main/java/org/apache/fluo/core/client/FluoAdminImpl.java
@@ -59,6 +59,7 @@
 import org.apache.hadoop.conf.Configuration;
 import org.apache.hadoop.fs.FileSystem;
 import org.apache.hadoop.fs.Path;
+import org.apache.hadoop.security.UserGroupInformation;
 import org.apache.zookeeper.KeeperException;
 import org.apache.zookeeper.KeeperException.NodeExistsException;
 import org.slf4j.Logger;
@@ -76,6 +77,28 @@ public class FluoAdminImpl implements FluoAdmin {
 
   private final String appRootDir;
 
+  /**
+   * Kerberos autentication method.
+   * 
+   * @param realm Realm to be used in authentication.
+   * @param keytab Keytab path.
+   * @since 1.2.0
+   */
+  public void loginWithKerberos(final String realm, final String keytab) {
+
+    try {
+      Configuration conf = new Configuration();
+      conf.set("hadoop.security.authentication", "kerberos");
+      conf.set("hadoop.security.authorization", "true");
+      UserGroupInformation.setConfiguration(conf);
+      UserGroupInformation.loginUserFromKeytab(realm, keytab);
+
+      logger.info("Connected with REALM: '{}'.", realm);
+    } catch (Exception e) {
+      throw new RuntimeException(e);
+    }
+  }
+
   public FluoAdminImpl(FluoConfiguration config) {
     this.config = config;
 
@@ -373,6 +396,14 @@ public static String copyDirToDfs(String dfsRoot, String appName, String srcDir,
   }
 
   private String copyJarsToDfs(String jars, String destDir) {
+
+    if (config.getClientConfiguration().getBoolean(FluoConfiguration.CLIENT_KERBEROS, false)) {
+      this.loginWithKerberos(
+          config.getClientConfiguration().getString(FluoConfiguration.CLIENT_KERBEROS_REALM, ""),
+          config.getClientConfiguration().getString(FluoConfiguration.CLIENT_KERBEROS_KEYTAB, ""));
+    }
+
+
     String dfsAppRoot = config.getDfsRoot() + "/" + config.getApplicationName();
     String dfsDestDir = dfsAppRoot + "/" + destDir;