DelegationTokenSecretManager (Hadoop 1.2.2-SNAPSHOT API)

java.lang.Object
- org.apache.hadoop.security.token.SecretManager<TokenIdent>
- - org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager<DelegationTokenIdentifier>
  - - org.apache.hadoop.hdfs.security.token.delegation.DelegationTokenSecretManager

```
public class DelegationTokenSecretManager
extends AbstractDelegationTokenSecretManager<DelegationTokenIdentifier>
```
A HDFS specific delegation token secret manager. The secret manager is responsible for generating and accepting the password for each token.

嵌套类概要
- 从类继承的嵌套类/接口 org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager
  AbstractDelegationTokenSecretManager.DelegationTokenInformation
- 从类继承的嵌套类/接口 org.apache.hadoop.security.token.SecretManager
  SecretManager.InvalidToken

字段概要
- 从类继承的字段 org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager
  allKeys, currentId, currentTokens, delegationTokenSequenceNumber, noInterruptsLock, running

构造器概要

构造器
构造器和说明
`DelegationTokenSecretManager(long delegationKeyUpdateInterval, long delegationTokenMaxLifetime, long delegationTokenRenewInterval, long delegationTokenRemoverScanInterval, FSNamesystem namesystem)` Create a secret manager

方法概要

方法
限定符和类型	方法和说明
`void`	`addPersistedDelegationToken(DelegationTokenIdentifier identifier, long expiryTime)` This method is intended to be used only while reading edit logs.
`static Credentials`	`createCredentials(NameNode namenode, UserGroupInformation ugi, String renewer)` A utility method for creating credentials.
`DelegationTokenIdentifier`	`createIdentifier()` Create an empty token identifier.
`int`	`getNumberOfKeys()` Returns the number of delegation keys currently stored.
`long`	`getTokenExpiryTime(DelegationTokenIdentifier dtId)` Returns expiry time of a token given its identifier.
`void`	`loadSecretManagerState(DataInputStream in)` Load SecretManager state from fsimage.
`protected void`	`logUpdateMasterKey(DelegationKey key)` Call namesystem to update editlogs for new master key.
`void`	`saveSecretManagerState(DataOutputStream out)` Store the current state of the SecretManager for persistence
`void`	`updatePersistedMasterKey(DelegationKey key)` Add a MasterKey to the list of keys.
`void`	`updatePersistedTokenCancellation(DelegationTokenIdentifier identifier)` Update the token cache with the cancel record in edit logs
`void`	`updatePersistedTokenRenewal(DelegationTokenIdentifier identifier, long expiryTime)` Update the token cache with renewal record in edit logs.

从类继承的方法 org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager
addKey, cancelToken, createPassword, createSecretKey, getAllKeys, isRunning, renewToken, retrievePassword, startThreads, stopThreads, verifyToken

从类继承的方法 org.apache.hadoop.security.token.SecretManager
createPassword, generateSecret

从类继承的方法 java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

- 构造器详细资料
  - DelegationTokenSecretManager
```
public DelegationTokenSecretManager(long delegationKeyUpdateInterval,
                            long delegationTokenMaxLifetime,
                            long delegationTokenRenewInterval,
                            long delegationTokenRemoverScanInterval,
                            FSNamesystem namesystem)
```
    Create a secret manager
    
    参数:
    delegationKeyUpdateInterval - the number of seconds for rolling new secret keys.
    delegationTokenMaxLifetime - the maximum lifetime of the delegation tokens
    delegationTokenRenewInterval - how often the tokens must be renewed
    delegationTokenRemoverScanInterval - how often the tokens are scanned for expired tokens
- 方法详细资料
  - createIdentifier
```
public DelegationTokenIdentifier createIdentifier()
```
    从类复制的说明: SecretManager
    
    Create an empty token identifier.
    
    指定者:
    
    createIdentifier 在类中 SecretManager<DelegationTokenIdentifier>
    
    返回:
    the newly created empty token identifier
  - getTokenExpiryTime
```
public long getTokenExpiryTime(DelegationTokenIdentifier dtId)
                        throws IOException
```
    Returns expiry time of a token given its identifier.
    
    参数:
    dtId - DelegationTokenIdentifier of a token
    
    返回:
    Expiry time of the token
    
    抛出:
    
    IOException
  - loadSecretManagerState
```
public void loadSecretManagerState(DataInputStream in)
                            throws IOException
```
    Load SecretManager state from fsimage.
    
    参数:
    in - input stream to read fsimage
    
    抛出:
    
    IOException
  - saveSecretManagerState
```
public void saveSecretManagerState(DataOutputStream out)
                            throws IOException
```
    Store the current state of the SecretManager for persistence
    
    参数:
    out - Output stream for writing into fsimage.
    
    抛出:
    
    IOException
  - addPersistedDelegationToken
```
public void addPersistedDelegationToken(DelegationTokenIdentifier identifier,
                               long expiryTime)
                                 throws IOException
```
    This method is intended to be used only while reading edit logs.
    
    参数:
    identifier - DelegationTokenIdentifier read from the edit logs or fsimage
    expiryTime - token expiry time
    
    抛出:
    
    IOException
  - updatePersistedMasterKey
```
public void updatePersistedMasterKey(DelegationKey key)
                              throws IOException
```
    Add a MasterKey to the list of keys.
    
    参数:
    key - DelegationKey
    
    抛出:
    
    IOException
  - updatePersistedTokenRenewal
```
public void updatePersistedTokenRenewal(DelegationTokenIdentifier identifier,
                               long expiryTime)
                                 throws IOException
```
    Update the token cache with renewal record in edit logs.
    
    参数:
    identifier - DelegationTokenIdentifier of the renewed token
    expiryTime -
    
    抛出:
    
    IOException
  - updatePersistedTokenCancellation
```
public void updatePersistedTokenCancellation(DelegationTokenIdentifier identifier)
                                      throws IOException
```
    Update the token cache with the cancel record in edit logs
    
    参数:
    identifier - DelegationTokenIdentifier of the canceled token
    
    抛出:
    
    IOException
  - getNumberOfKeys
```
public int getNumberOfKeys()
```
    Returns the number of delegation keys currently stored.
    
    返回:
    number of delegation keys
  - logUpdateMasterKey
```
protected void logUpdateMasterKey(DelegationKey key)
                           throws IOException
```
    Call namesystem to update editlogs for new master key.
    
    覆盖:
    
    logUpdateMasterKey 在类中 AbstractDelegationTokenSecretManager<DelegationTokenIdentifier>
    
    抛出:
    
    IOException
  - createCredentials
```
public static Credentials createCredentials(NameNode namenode,
                            UserGroupInformation ugi,
                            String renewer)
                                     throws IOException
```
    A utility method for creating credentials.
    
    抛出:
    
    IOException

类 DelegationTokenSecretManager

嵌套类概要

从类继承的嵌套类/接口 org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager

从类继承的嵌套类/接口 org.apache.hadoop.security.token.SecretManager

字段概要

从类继承的字段 org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager

构造器概要

方法概要

从类继承的方法 org.apache.hadoop.security.token.delegation.AbstractDelegationTokenSecretManager

从类继承的方法 org.apache.hadoop.security.token.SecretManager

从类继承的方法 java.lang.Object

构造器详细资料

DelegationTokenSecretManager

方法详细资料

createIdentifier

getTokenExpiryTime

loadSecretManagerState

saveSecretManagerState

addPersistedDelegationToken

updatePersistedMasterKey

updatePersistedTokenRenewal

updatePersistedTokenCancellation

getNumberOfKeys

logUpdateMasterKey

createCredentials