Skip to content

Commit

Permalink
remove hosts variable and unify Vault URI (apache#65)
Browse files Browse the repository at this point in the history
  • Loading branch information
@jlopezmalla
jlopezmalla authored Sep 19, 2017
1 parent 6afaa14 commit 118985a
Show file tree
Hide file tree
Showing 6 changed files with 11 additions and 13 deletions.
2 changes: 1 addition & 1 deletion core/src/main/scala/org/apache/spark/deploy/SparkSubmit.scala
View file
Original file line number Diff line number Diff line change
Expand Up @@ -710,7 +710,7 @@ object SparkSubmit extends CommandLineUtils {
}

val vaultProtocol = args.sparkProperties.get("spark.secret.vault.protocol")
val vaultHost = args.sparkProperties.get("spark.secret.vault.hosts")
val vaultHost = args.sparkProperties.get("spark.secret.vault.host")
val vaultPort = args.sparkProperties.get("spark.secret.vault.port")

val vaultUrlParams = (vaultProtocol, vaultHost, vaultPort)
Expand Down
3 changes: 1 addition & 2 deletions core/src/main/scala/org/apache/spark/executor/CoarseGrainedExecutorBackend.scala
View file
Original file line number Diff line number Diff line change
Expand Up @@ -287,8 +287,7 @@ private[spark] object CoarseGrainedExecutorBackend extends Logging {
printUsageAndExit()
}
ConfigSecurity.prepareEnvironment(scala.util.Try{
VaultHelper.getRealToken(ConfigSecurity.vaultUri.get,
sys.env("VAULT_TEMP_TOKEN"))}.toOption)
VaultHelper.getRealToken(sys.env("VAULT_URI"), sys.env("VAULT_TEMP_TOKEN"))}.toOption)

run(driverUrl, executorId, hostname, cores, appId, workerUrl, userClassPath)
System.exit(0)
Expand Down
3 changes: 1 addition & 2 deletions core/src/main/scala/org/apache/spark/security/ConfigSecurity.scala
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,9 +23,8 @@ import org.apache.spark.internal.Logging
object ConfigSecurity extends Logging{

var vaultToken: Option[String] = None
val vaultHost: Option[String] = sys.env.get("VAULT_HOST")
val vaultUri: Option[String] = getVaultUri(sys.env.get("VAULT_PROTOCOL"),
vaultHost, sys.env.get("VAULT_PORT"))
sys.env.get("VAULT_HOST"), sys.env.get("VAULT_PORT"))

def getVaultUri(vaultProtocol: Option[String],
vaultHost: Option[String],
Expand Down
8 changes: 4 additions & 4 deletions ...ce-managers/mesos/src/main/scala/org/apache/spark/deploy/rest/mesos/MesosRestServer.scala
View file
Original file line number Diff line number Diff line change
Expand Up @@ -47,14 +47,14 @@ private[spark] class MesosRestServer(

protected lazy val token = {
require((masterConf.getOption("spark.secret.vault.protocol").isDefined
&& masterConf.getOption("spark.secret.vault.hosts").isDefined
&& masterConf.getOption("spark.secret.vault.host").isDefined
&& masterConf.getOption("spark.secret.vault.port").isDefined),
"You are attempting to login in Vault but no Vault obtained," +
" please configure spark.secret.vault.protocol," +
" spark.vault.host and spark.secret.vault.port" +
" in your Stratio Spark Dispatcher instance")
val vaultUrl = s"${masterConf.get("spark.secret.vault.protocol")}://" +
s"${masterConf.get("spark.secret.vault.hosts").split(",")
s"${masterConf.get("spark.secret.vault.host").split(",")
.map(host => s"$host:${masterConf.get("spark.secret.vault.port")}").mkString(",")}"
VaultHelper.getTokenFromAppRole(vaultUrl,
sys.env("VAULT_ROLE_ID"),
Expand Down Expand Up @@ -120,11 +120,11 @@ private[mesos] class MesosSubmitRequestServlet(
val sparkJavaOpts = Utils.sparkJavaOpts(conf)
val javaOpts = sparkJavaOpts ++ extraJavaOpts
val securitySparkOpts: Map[String, String] = {
if (sparkProperties.get("spark.secret.vault.hosts").isDefined
if (sparkProperties.get("spark.secret.vault.host").isDefined
&& sparkProperties.get("spark.secret.vault.protocol").isDefined
&& sparkProperties.get("spark.secret.vault.port").isDefined) {
val vaultUrl = s"${sparkProperties("spark.secret.vault.protocol")}://" +
s"${sparkProperties("spark.secret.vault.hosts").split(",")
s"${sparkProperties("spark.secret.vault.host").split(",")
.map(host => s"$host:${sparkProperties("spark.secret.vault.port")}").mkString(",")}"
(sparkProperties.get("spark.secret.vault.role"),
sys.env.get("VAULT_ROLE"),
Expand Down
4 changes: 2 additions & 2 deletions ...mesos/src/main/scala/org/apache/spark/scheduler/cluster/mesos/MesosClusterScheduler.scala
View file
Original file line number Diff line number Diff line change
Expand Up @@ -701,11 +701,11 @@ private[spark] class MesosClusterScheduler(

var sparkProperties = state.driverDescription.conf.getAll.toMap
if (sparkProperties.get("spark.secret.vault.protocol").isDefined
&& sparkProperties.get("spark.secret.vault.hosts").isDefined
&& sparkProperties.get("spark.secret.vault.host").isDefined
&& sparkProperties.get("spark.secret.vault.port").isDefined)
{
val vaultUrl = s"${sparkProperties("spark.secret.vault.protocol")}://" +
s"${sparkProperties("spark.secret.vault.hosts").split(",")
s"${sparkProperties("spark.secret.vault.host").split(",")
.map(host => s"$host:${sparkProperties("spark.secret.vault.port")}")
.mkString(",")}"
val role = sparkProperties("spark.secret.vault.role")
Expand Down
4 changes: 2 additions & 2 deletions ...n/scala/org/apache/spark/scheduler/cluster/mesos/MesosCoarseGrainedSchedulerBackend.scala
View file
Original file line number Diff line number Diff line change
Expand Up @@ -219,8 +219,8 @@ private[spark] class MesosCoarseGrainedSchedulerBackend(
ConfigSecurity.vaultToken.get))
.build())
environment.addVariables(Environment.Variable.newBuilder()
.setName("VAULT_HOST")
.setValue(ConfigSecurity.vaultHost.get)
.setName("VAULT_URI")
.setValue(ConfigSecurity.vaultUri.get)
.build())
}

Expand Down

0 comments on commit 118985a

Please sign in to comment.