Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-7433

HBaseQueueDebugger fails with Authorization enabled

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.5.1
    • Fix Version/s: 3.5.2
    • Component/s: Security
    • Labels:
      None
    • Release Notes:
      Fixed a bug that prevented HBaseQueueDebugger to run in an impersonated namespace
    • Rank:
      1|hzzn1b:

      Description

      In HBaseQueueDebugger, we use AuthorizationEnforcementService, but it isn't being started. Because of that, there's the following error:

      Exception in thread "main" com.google.common.util.concurrent.UncheckedExecutionException: java.lang.IllegalStateException: Cannot use authorization enforcement service because it has not been started. Its current state is NEW.
	at com.google.common.cache.LocalCache$Segment.get(LocalCache.java:2258)
	at com.google.common.cache.LocalCache.get(LocalCache.java:3990)
	at com.google.common.cache.LocalCache.getOrLoad(LocalCache.java:3994)
	at com.google.common.cache.LocalCache$LocalLoadingCache.get(LocalCache.java:4878)
	at co.cask.cdap.security.authorization.AbstractAuthorizationService.getPrivileges(AbstractAuthorizationService.java:178)
	at co.cask.cdap.security.authorization.DefaultAuthorizationEnforcementService.createFilter(DefaultAuthorizationEnforcementService.java:78)
	at co.cask.cdap.internal.app.namespace.DefaultNamespaceAdmin.list(DefaultNamespaceAdmin.java:372)
	at co.cask.cdap.data.tools.HBaseQueueDebugger.scanAllQueues(HBaseQueueDebugger.java:161)
	at co.cask.cdap.data.tools.HBaseQueueDebugger.main(HBaseQueueDebugger.java:536)
Caused by: java.lang.IllegalStateException: Cannot use authorization enforcement service because it has not been started. Its current state is NEW.
	at co.cask.cdap.security.authorization.AbstractAuthorizationService.fetchPrivileges(AbstractAuthorizationService.java:154)
	at co.cask.cdap.security.authorization.AbstractAuthorizationService$1.load(AbstractAuthorizationService.java:87)
	at co.cask.cdap.security.authorization.AbstractAuthorizationService$1.load(AbstractAuthorizationService.java:83)
	at com.google.common.cache.LocalCache$LoadingValueReference.loadFuture(LocalCache.java:3589)
	at com.google.common.cache.LocalCache$Segment.loadSync(LocalCache.java:2374)
	at com.google.common.cache.LocalCache$Segment.lockedGetOrLoad(LocalCache.java:2337)
	at com.google.common.cache.LocalCache$Segment.get(LocalCache.java:2252)
	... 8 more

        Attachments

          Issue Links

          relates to

          Bug - A problem which impairs or prevents the functions of the product. CDAP-7175 Upgrade tool should work with authorization enabled

          • Blocker - Blocks development and/or testing work, production could not run.
          • Resolved

            Activity

              People

              • Assignee:
                ali.anwar Ali Anwar
                Reporter:
                ali.anwar Ali Anwar
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: