ThriftHttpServlet (Apache HBase 2.0.6 API)

java.lang.Object
- javax.servlet.GenericServlet
- - javax.servlet.http.HttpServlet
  - - org.apache.thrift.server.TServlet
    - - org.apache.hadoop.hbase.thrift.ThriftHttpServlet

All Implemented Interfaces:

Serializable, javax.servlet.Servlet, javax.servlet.ServletConfig
```
@InterfaceAudience.Private
public class ThriftHttpServlet
extends org.apache.thrift.server.TServlet
```
Thrift Http Servlet is used for performing Kerberos authentication if security is enabled and also used for setting the user specified in "doAs" parameter.

See Also:

Serialized Form

Nested Class Summary

Nested Classes
Modifier and Type	Class and Description
`private static class`	`ThriftHttpServlet.HttpKerberosServerAction`
`private static class`	`ThriftHttpServlet.RemoteUserIdentity` Basic "struct" class to hold the final base64-encoded, authenticated GSSAPI token for the user with the given principal talking to the Thrift server.

Field Summary

Fields
Modifier and Type	Field and Description
`static String`	`AUTHORIZATION`
`private org.apache.hadoop.conf.Configuration`	`conf`
`private boolean`	`doAsEnabled`
`private ThriftServerRunner.HBaseHandler`	`hbaseHandler`
`private static org.slf4j.Logger`	`LOG`
`static String`	`NEGOTIATE`
`private org.apache.hadoop.security.UserGroupInformation`	`realUser`
`private boolean`	`securityEnabled`
`private static long`	`serialVersionUID`
`static String`	`WWW_AUTHENTICATE`

Constructor Summary

Constructors
Constructor and Description
`ThriftHttpServlet(org.apache.thrift.TProcessor processor, org.apache.thrift.protocol.TProtocolFactory protocolFactory, org.apache.hadoop.security.UserGroupInformation realUser, org.apache.hadoop.conf.Configuration conf, ThriftServerRunner.HBaseHandler hbaseHandler, boolean securityEnabled, boolean doAsEnabled)`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`private ThriftHttpServlet.RemoteUserIdentity`	`doKerberosAuth(javax.servlet.http.HttpServletRequest request)` Do the GSS-API kerberos authentication.
`protected void`	`doPost(javax.servlet.http.HttpServletRequest request, javax.servlet.http.HttpServletResponse response)`

Methods inherited from class org.apache.thrift.server.TServlet
addCustomHeader, doGet, setCustomHeaders

Methods inherited from class javax.servlet.http.HttpServlet
doDelete, doHead, doOptions, doPut, doTrace, getLastModified, service, service

Methods inherited from class javax.servlet.GenericServlet
destroy, getInitParameter, getInitParameterNames, getServletConfig, getServletContext, getServletInfo, getServletName, init, init, log, log

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

serialVersionUID
```
private static final long serialVersionUID
```
See Also:

Constant Field Values

LOG

private static final org.slf4j.Logger LOG

realUser

private final transient org.apache.hadoop.security.UserGroupInformation realUser

conf

private final transient org.apache.hadoop.conf.Configuration conf

securityEnabled
```
private final boolean securityEnabled
```

doAsEnabled
```
private final boolean doAsEnabled
```

hbaseHandler

private transient ThriftServerRunner.HBaseHandler hbaseHandler

WWW_AUTHENTICATE

public static final String WWW_AUTHENTICATE

See Also:: Constant Field Values

AUTHORIZATION

public static final String AUTHORIZATION

See Also:: Constant Field Values

NEGOTIATE
```
public static final String NEGOTIATE
```
See Also:

Constant Field Values

Constructor Detail

ThriftHttpServlet

public ThriftHttpServlet(org.apache.thrift.TProcessor processor,
                         org.apache.thrift.protocol.TProtocolFactory protocolFactory,
                         org.apache.hadoop.security.UserGroupInformation realUser,
                         org.apache.hadoop.conf.Configuration conf,
                         ThriftServerRunner.HBaseHandler hbaseHandler,
                         boolean securityEnabled,
                         boolean doAsEnabled)

Method Detail

doPost

protected void doPost(javax.servlet.http.HttpServletRequest request,
                      javax.servlet.http.HttpServletResponse response)
               throws javax.servlet.ServletException,
                      IOException

Overrides:: doPost in class org.apache.thrift.server.TServlet
Throws:: javax.servlet.ServletException; IOException

doKerberosAuth

private ThriftHttpServlet.RemoteUserIdentity doKerberosAuth(javax.servlet.http.HttpServletRequest request)
                                                     throws HttpAuthenticationException

Do the GSS-API kerberos authentication. We already have a logged in subject in the form of serviceUGI, which GSS-API will extract information from.

Throws:: HttpAuthenticationException

Class ThriftHttpServlet

Nested Class Summary

Field Summary

Constructor Summary

Method Summary

Methods inherited from class org.apache.thrift.server.TServlet

Methods inherited from class javax.servlet.http.HttpServlet

Methods inherited from class javax.servlet.GenericServlet

Methods inherited from class java.lang.Object

Field Detail

serialVersionUID

LOG

realUser

conf

securityEnabled

doAsEnabled

hbaseHandler

WWW_AUTHENTICATE

AUTHORIZATION

NEGOTIATE

Constructor Detail

ThriftHttpServlet

Method Detail

doPost

doKerberosAuth