public boolean checkAccess(UserGroupInformation callerUGI, QueueACL acl, String queueName) { if (!isACLsEnable) { return true; } return scheduler.checkAccess(callerUGI, acl, queueName); } }
public boolean checkAccess(UserGroupInformation callerUGI, QueueACL acl, String queueName) { if (!isACLsEnable) { return true; } return scheduler.checkAccess(callerUGI, acl, queueName); } }
@Override public synchronized boolean checkAccess(UserGroupInformation callerUGI, QueueACL acl, String queueName) { return scheduler.checkAccess(callerUGI, acl, queueName); }
if (callerUGI != null && !this.rm.getResourceScheduler().checkAccess( callerUGI, QueueACL.ADMINISTER_QUEUE, queue)) { throw new ForbiddenException( if (!this.rm.getResourceScheduler().checkAccess(user, queueACL, queue)) { return new RMQueueAclInfo(false, user.getUserName(), "User=" + username + " doesn't have access to queue=" + queue
return false; return scheduler.checkAccess(callerUGI, acl, targetQueue); } else { return scheduler.checkAccess(callerUGI, acl, targetQueue);
public boolean checkAccess(UserGroupInformation callerUGI, QueueACL acl, RMApp app, String remoteAddress, List<String> forwardedAddresses) { if (!isACLsEnable) { return true; } if (scheduler instanceof CapacityScheduler) { CSQueue queue = ((CapacityScheduler) scheduler).getQueue(app.getQueue()); if (queue == null) { // The application exists but the associated queue does not exist. // This may be due to a queue that is not defined when the RM restarts. // At this point we choose to log the fact and allow users to access // and view the apps in a removed queue. This should only happen on // application recovery. LOG.error("Queue " + app.getQueue() + " does not exist for " + app .getApplicationId()); return true; } return authorizer.checkPermission( new AccessRequest(queue.getPrivilegedEntity(), callerUGI, SchedulerUtils.toAccessType(acl), app.getApplicationId().toString(), app.getName(), remoteAddress, forwardedAddresses)); } else { return scheduler.checkAccess(callerUGI, acl, app.getQueue()); } }