com.facebook.presto.tests.ImpersonationTests Maven / Gradle / Ivy
/*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package com.facebook.presto.tests;
import com.google.inject.Inject;
import com.google.inject.name.Named;
import io.prestodb.tempto.BeforeTestWithContext;
import io.prestodb.tempto.ProductTest;
import io.prestodb.tempto.Requires;
import io.prestodb.tempto.fulfillment.table.hive.tpch.ImmutableTpchTablesRequirements.ImmutableNationTable;
import io.prestodb.tempto.hadoop.hdfs.HdfsClient;
import io.prestodb.tempto.query.QueryExecutor;
import org.testng.annotations.Test;
import static com.facebook.presto.tests.TestGroups.HDFS_IMPERSONATION;
import static com.facebook.presto.tests.TestGroups.HDFS_NO_IMPERSONATION;
import static com.facebook.presto.tests.TestGroups.PROFILE_SPECIFIC_TESTS;
import static com.facebook.presto.tests.utils.QueryExecutors.connectToPresto;
import static java.lang.String.format;
import static org.testng.Assert.assertEquals;
@Requires(ImmutableNationTable.class)
public class ImpersonationTests
extends ProductTest
{
private QueryExecutor aliceExecutor;
@Inject
private HdfsClient hdfsClient;
@Inject
@Named("[email protected]_user")
private String aliceJdbcUser;
// The value for configuredHdfsUser is profile dependent
// For non-Kerberos environments this variable will be equal to -DHADOOP_USER_NAME as set in jvm.config
// For Kerberized environments this variable will be equal to the hive.hdfs.presto.principal property as set in hive.properties
@Inject
@Named("databases.presto.configured_hdfs_user")
private String configuredHdfsUser;
@Inject
@Named("databases.hive.warehouse_directory_path")
private String warehouseDirectoryPath;
@BeforeTestWithContext
public void setup()
{
aliceExecutor = connectToPresto("alice@presto");
QueryExecutor.query(format("GRANT SELECT ON NATION TO %s", aliceJdbcUser));
}
@Test(groups = {HDFS_NO_IMPERSONATION, PROFILE_SPECIFIC_TESTS})
public void testHdfsImpersonationDisabled()
{
String tableName = "check_hdfs_impersonation_disabled";
checkTableOwner(tableName, configuredHdfsUser, aliceExecutor);
}
@Test(groups = {HDFS_IMPERSONATION, PROFILE_SPECIFIC_TESTS})
public void testHdfsImpersonationEnabled()
{
String tableName = "check_hdfs_impersonation_enabled";
checkTableOwner(tableName, aliceJdbcUser, aliceExecutor);
}
private String getTableLocation(String tableName)
{
return warehouseDirectoryPath + '/' + tableName;
}
private void checkTableOwner(String tableName, String expectedOwner, QueryExecutor executor)
{
executor.executeQuery(format("DROP TABLE IF EXISTS %s", tableName));
executor.executeQuery(format("CREATE TABLE %s AS SELECT * FROM NATION", tableName));
String tableLocation = getTableLocation(tableName);
String owner = hdfsClient.getOwner(tableLocation);
assertEquals(owner, expectedOwner);
executor.executeQuery(format("DROP TABLE IF EXISTS %s", tableName));
}
}