Optimize account opening script

Author: det101

dss-server/src/main/resources/linkis.properties

@@ -17,7 +17,7 @@
 
 wds.linkis.test.mode=true
 
-wds.linkis.server.mybatis.datasource.url=jdbc:mysql://0.0.0.0:3306/dss
+wds.linkis.server.mybatis.datasource.url=jdbc:mysql://0.0.0.1:3306/linkis?characterEncoding=UTF-8
 
 wds.linkis.server.mybatis.datasource.username=
 
@@ -38,28 +38,34 @@ wds.linkis.server.mybatis.typeAliasesPackage=com.webank.wedatasphere.dss.server.
 wds.linkis.server.mybatis.BasePackage=com.webank.wedatasphere.dss.server.dao,com.webank.wedatasphere.dss.application.dao
 
 ##azkaban
-wds.dss.appjoint.scheduler.azkaban.address=http://127.0.0.1:8091
+wds.dss.appjoint.scheduler.azkaban.address=http://0.0.0.0:8081
 
 wds.linkis.gateway.ip=127.0.0.1
 wds.linkis.gateway.port=9001
 
 wds.dss.appjoint.scheduler.project.store.dir=file:///appcom/tmp/wds/scheduler
-wds.linkis.super.user.name=
-wds.linkis.workspace.user.root.path=
-wds.linkis.hdfs.user.root.path=
-wds.linkis.result.set.root.path=
-wds.linkis.scheduler.path=
+wds.linkis.super.user.name=root
+wds.linkis.workspace.user.root.path=file:///tmp/linkis/
+wds.linkis.hdfs.user.root.path=hdfs:///tmp/linkis
+wds.linkis.result.set.root.path=hdfs:///tmp/linkis
+wds.linkis.scheduler.path=file:///appcom/tmp/wds/scheduler
 wds.linkis.user.path=hdfs:///user
-wds.linkis.ldap.script.server=
-wds.linkis.ldap.script.login.user=
-wds.linkis.ldap.script.login.password=
-wds.linkis.ldap.script.python.path=/software/tools/bin/ldap_user.py
-wds.linkis.ldap.script.source.path=/software/tools/venv/bin/activate
-wds.linkis.ldap.script.server.ssh.port=22
 wds.linkis.dss.install.dir=/usr/local/dss_linkis/dss/dss-server
-wds.linkis.azkaban.install.dir=/usr/local/dss_linkis/azkban
+wds.linkis.azkaban.install.dir=/usr/local/dss_linkis/azkaban
+
+wds.linkis.metastore.hive.hdfs.base.path=/user/hive/warehouse
+wds.linkis.metastore.script.path=default/Metastore.sh
+wds.linkis.metastore.db.tail=_default
+
+wds.linkis.kerberos.realm=
+wds.linkis.kerberos.admin=
+wds.linkis.kerberos.enable.switch=0
+wds.linkis.kerberos.script.path=default/Kerberos.sh
+wds.linkis.kerberos.keytab.path=/etc/security/keytabs
+wds.linkis.kerberos.kdc.node=
+wds.linkis.kerberos.kdc.user.name=
+wds.linkis.kerberos.kdc.user.password=
+wds.linkis.kerberos.ssh.port=22
+wds.dss.deploy.path=/usr/local/dss_linkis
+wds.dss.user.account.command.class=com.webank.wedatasphpere.dss.user.service.impl.LinuxUserCommand,com.webank.wedatasphpere.dss.user.service.impl.LdapCommand,com.webank.wedatasphpere.dss.user.service.impl.WorkspaceCommand,com.webank.wedatasphpere.dss.user.service.impl.KerberosCommand,com.webank.wedatasphpere.dss.user.service.impl.MetastoreCommand,com.webank.wedatasphpere.dss.user.service.impl.AzkabanCommand
 
-
-wds.dss.user.account.command.class=com.webank.wedatasphpere.dss.user.service.impl.LdapCommand
-
-  #,com.webank.wedatasphpere.dss.user.service.impl.WorkspaceCommand,com.webank.wedatasphpere.dss.user.service.impl.KerberosCommand,com.webank.wedatasphpere.dss.user.service.impl.MetastoreCommand,com.webank.wedatasphpere.dss.user.service.impl.com.webank.wedatasphpere.dss.user.service.impl.AzkabanCommand

dss-user-manager/pom.xml

@@ -11,6 +11,9 @@
 
     <artifactId>dss-user-manager</artifactId>
     <packaging>jar</packaging>
+    <properties>
+        <project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
+    </properties>
 
     <dependencies>
         <dependency>

dss-user-manager/src/main/java/com/webank/wedatasphpere/dss/user/conf/DSSUserManagerConfig.java

@@ -13,19 +13,27 @@
 
 
 public class DSSUserManagerConfig {
-//    private final static ResourceBundle resource = ResourceBundle.getBundle("linkis");
-    public static final  String LOCAL_USER_ROOT_PATH = CommonVars.apply("wds.dss.user.root.dir","").getValue();
-    public static final String BDP_SERVER_LDAP_SCRIPT_SERVER = CommonVars.apply("wds.linkis.ldap.script.server", "").getValue();
-    public static final String BDP_SERVER_LDAP_SCRIPT_LOGIN_USER = CommonVars.apply("wds.linkis.ldap.script.login.user", "").getValue();
-    public static final String BDP_SERVER_LDAP_SCRIPT_LOGIN_PASSWORD = CommonVars.apply("wds.linkis.ldap.script.login.password", "").getValue();
-    public static final String BDP_SERVER_LDAP_SCRIPT_PYTHON_PATH = CommonVars.apply("wds.linkis.ldap.script.python.path", "").getValue();
-    public static final String  BDP_SERVER_LDAP_SCRIPT_SOURCE_PATH = CommonVars.apply("wds.linkis.ldap.script.source.path", "").getValue();
-    public static final String  BDP_SERVER_LDAP_SCRIPT_SERVER_SSH_PORT = CommonVars.apply("wds.linkis.ldap.script.server.ssh.port", "22").getValue();
-
-    public static final String BDP_SERVER_MYBATIS_DATASOURCE_URL = CommonVars.apply("wds.linkis.server.mybatis.datasource.url", "").getValue();
-    public static final String BDP_SERVER_MYBATIS_DATASOURCE_USERNAME =  CommonVars.apply("wds.linkis.server.mybatis.datasource.username", "").getValue();
-    public static final String BDP_SERVER_MYBATIS_DATASOURCE_PASSWORD = CommonVars.apply("wds.linkis.server.mybatis.datasource.password", "").getValue();
-    public static final String SCHEDULER_ADDRESS = CommonVars.apply("wds.dss.appjoint.scheduler.azkaban.address", "").getValue();
-    public static final String USER_ACCOUNT_COMMANDS = CommonVars.apply("wds.dss.user.account.command.class", "").getValue();
+    //    private final static ResourceBundle resource = ResourceBundle.getBundle("linkis");
+    public static final  String LOCAL_USER_ROOT_PATH = CommonVars.apply("wds.dss.user.root.dir","").getValue().trim();
+    public static final String BDP_SERVER_MYBATIS_DATASOURCE_URL = CommonVars.apply("wds.linkis.server.mybatis.datasource.url", "").getValue().trim();
+    public static final String BDP_SERVER_MYBATIS_DATASOURCE_USERNAME =  CommonVars.apply("wds.linkis.server.mybatis.datasource.username", "").getValue().trim();
+    public static final String BDP_SERVER_MYBATIS_DATASOURCE_PASSWORD = CommonVars.apply("wds.linkis.server.mybatis.datasource.password", "").getValue().trim();
+    public static final String SCHEDULER_ADDRESS = CommonVars.apply("wds.dss.appjoint.scheduler.azkaban.address", "").getValue().trim();
+    public static final String USER_ACCOUNT_COMMANDS = CommonVars.apply("wds.dss.user.account.command.class", "").getValue().trim();
+
+    public static final String METASTORE_HDFS_PATH = CommonVars.apply("wds.linkis.metastore.hive.hdfs.base.path", "").getValue().trim();
+    public static final String METASTORE_SCRIPT_PAHT = CommonVars.apply("wds.linkis.metastore.script.path", "").getValue().trim();
+    public static final String METASTORE_DB_TAIL = CommonVars.apply("wds.linkis.metastore.db.tail", "_default").getValue().trim();
+
+    public static final String KERBEROS_REALM = CommonVars.apply("wds.linkis.kerberos.realm", "").getValue().trim();
+    public static final String KERBEROS_ADMIN = CommonVars.apply("wds.linkis.kerberos.admin", "").getValue().trim();
+    public static final String KERBEROS_SCRIPT_PATH = CommonVars.apply("wds.linkis.kerberos.script.path", "").getValue().trim();
+    public static final String KERBEROS_KEYTAB_PATH = CommonVars.apply("wds.linkis.kerberos.keytab.path", "").getValue().trim();
+    public static final String KERBEROS_SSH_PORT = CommonVars.apply("wds.linkis.kerberos.ssh.port", "22").getValue().trim();
+    public static final String KERBEROS_KDC_NODE = CommonVars.apply("wds.linkis.kerberos.kdc.node", "").getValue().trim();
+    public static final String KERBEROS_KDC_USER_NAME = CommonVars.apply("wds.linkis.kerberos.kdc.user.name", "").getValue().trim();
+    public static final String KERBEROS_KDC_USER_PASSWORD = CommonVars.apply("wds.linkis.kerberos.kdc.user.password", "").getValue().trim();
+    public static final String KEBBEROS_ENABLE_SWITCH = CommonVars.apply("wds.linkis.kerberos.enable.switch", "").getValue().trim();
+    public static final String DSS_DEPLOY_PATH = CommonVars.apply("wds.dss.deploy.path", "").getValue().trim();
 
 }

dss-user-manager/src/main/java/com/webank/wedatasphpere/dss/user/service/AbsCommand.java

@@ -1,11 +1,13 @@
 package com.webank.wedatasphpere.dss.user.service;
 
 
+import com.webank.wedatasphere.linkis.server.Message;
 import com.webank.wedatasphpere.dss.user.dto.request.AuthorizationBody;
 import org.dom4j.DocumentException;
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
 
+import javax.ws.rs.core.Response;
 import java.io.BufferedReader;
 import java.io.IOException;
 import java.io.InputStreamReader;
@@ -31,12 +33,14 @@ public String renew(AuthorizationBody body) {
     public String undoAuthorization(AuthorizationBody body) { return Command.SUCCESS; }
 
     @Override
-    public String authorization(AuthorizationBody body) throws IOException,DocumentException, Exception { return Command.SUCCESS; }
+//    public String authorization(AuthorizationBody body) throws DocumentException { return Command.SUCCESS; }
+    public String authorization(AuthorizationBody body) throws IOException, Exception { return Command.SUCCESS; }
+
     public String toMessage(String msg) {
         return this.getClass().getSimpleName() + "模块开始执行："+ msg;
     }
 
-    protected String runShell(String scriptPath, String[] args) throws Exception {
+    protected String runShell(String scriptPath, String[] args){
         String bashCommand;
         try {
             bashCommand = "sh " + scriptPath + " " + String.join(" ", args);
@@ -51,14 +55,14 @@ protected String runShell(String scriptPath, String[] args) throws Exception {
         }
     }
 
-    protected String getString(Process process) throws Exception {
+    protected String getString(Process process) throws IOException, InterruptedException {
         BufferedReader br = new BufferedReader(new InputStreamReader(process.getInputStream()));
 
         String inline;
         while ((inline = br.readLine()) != null) {
             if (!inline.equals("")) {
                 inline = inline.replaceAll("<", "&lt;").replaceAll(">", "&gt;");
-                logger.info("shell info:"+inline);
+                logger.info(inline);
             } else {
                 logger.info("\n");
             }
@@ -67,10 +71,9 @@ protected String getString(Process process) throws Exception {
         br = new BufferedReader(new InputStreamReader(process.getErrorStream()));    //错误信息
         while ((inline = br.readLine()) != null) {
             if (!inline.equals(""))
-                logger.error("shell error:"+inline);
+                logger.warn(inline);
             else
-                logger.error("\n");
-//            throw new Exception(inline);
+                logger.warn("\n");
         }
 
         int status = process.waitFor();

dss-user-manager/src/main/java/com/webank/wedatasphpere/dss/user/service/Command.java

@@ -9,33 +9,31 @@
 public interface Command {
 
     final public static String SUCCESS = "success";
-    final public static String ERROR = "create account failed";
-
     /**
      * 授权开通服务
      * @param body
      * @return 成功 success  其他失败
      */
-    public String authorization(AuthorizationBody body) throws Exception;
+    public String authorization(AuthorizationBody body) throws DocumentException, IOException, Exception;
 
     /**
      * 关闭授权
      * @param body
      * @return 成功 success  其他失败
      */
-    public String undoAuthorization(AuthorizationBody body) throws Exception;
+    public String undoAuthorization(AuthorizationBody body);
 
     /**
      * 扩容
      * @param body
      * @return 成功 success  其他失败
      */
-    public String capacity(AuthorizationBody body) throws Exception;
+    public String capacity(AuthorizationBody body);
 
     /**
      * 续费
      * @param body
      * @return 成功 success  其他失败
      */
-    public String renew(AuthorizationBody body) throws Exception;
+    public String renew(AuthorizationBody body);
 }

dss-user-manager/src/main/java/com/webank/wedatasphpere/dss/user/service/impl/KerberosCommand.java

@@ -2,6 +2,8 @@
 
 import com.typesafe.config.Config;
 import com.typesafe.config.ConfigFactory;
+import com.webank.wedatasphere.linkis.common.conf.CommonVars;
+import com.webank.wedatasphpere.dss.user.conf.DSSUserManagerConfig;
 import com.webank.wedatasphpere.dss.user.dto.request.AuthorizationBody;
 import com.webank.wedatasphpere.dss.user.service.AbsCommand;
 import com.webank.wedatasphpere.dss.user.service.Command;
@@ -17,33 +19,31 @@ public class KerberosCommand extends AbsCommand {
 
     @Override
     public String authorization(AuthorizationBody body) throws Exception {
-        Config parms = ConfigFactory.load("config/properties.conf");
-        String rst = createKt(body, parms);
+        String rst = createKt(body);
         return rst != Command.SUCCESS ? rst : Command.SUCCESS;
     }
 
-    private String createKt(AuthorizationBody body, Config parms) throws Exception {
-
+    private String createKt(AuthorizationBody body) throws Exception {
         String userName = body.getUsername();
         String hostName = InetAddress.getLocalHost().getHostName();
         String res = null;
         if(userName != null){
-            res = callShell(parms.getString("shellFile"), userName,hostName,
-                    parms.getString("keytabPath"),parms.getString("sshPort"),
-                    parms.getString("kdcNode"),parms.getString("kdcUser"),parms.getString("password"),parms.getString("realm"));
+            res = callShell(DSSUserManagerConfig.KERBEROS_SCRIPT_PATH, userName,hostName,
+                    DSSUserManagerConfig.KERBEROS_KEYTAB_PATH,DSSUserManagerConfig.KERBEROS_SSH_PORT,
+                    DSSUserManagerConfig.KERBEROS_KDC_NODE,DSSUserManagerConfig.KERBEROS_KDC_USER_NAME,DSSUserManagerConfig.KERBEROS_KDC_USER_PASSWORD,DSSUserManagerConfig.KERBEROS_REALM,DSSUserManagerConfig.KEBBEROS_ENABLE_SWITCH);
         }
         return res;
     }
 
     private String callShell(String shellFile, String username, String hostName, String keytabPath,
-                             String sshPort, String kdcNode, String kdcUser,String password, String realm) throws Exception {
+                             String sshPort, String kdcNode, String kdcUser,String password, String realm,String enableSwich) throws Exception {
 
         String bashCommand = getResource(shellFile);
         String scriptCmd ;
         if(null != hostName){
-            scriptCmd = String.format("%s %s %s %s %s %s %s %s", username,hostName,keytabPath,sshPort,kdcNode,kdcUser,password,realm);
+            scriptCmd = String.format("%s %s %s %s %s %s %s %s %s", username,hostName,keytabPath,sshPort,kdcNode,kdcUser,password,realm,enableSwich);
         }else {
-            scriptCmd = String.format("%s %s %s %s %s %s %s", username,keytabPath,sshPort,kdcNode,kdcUser,password,realm);
+            scriptCmd = String.format("%s %s %s %s %s %s %s %s", username,keytabPath,sshPort,kdcNode,kdcUser,password,realm,enableSwich);
         }
         String[] args = scriptCmd.split(" ");
         return this.runShell(bashCommand, args);

dss-user-manager/src/main/java/com/webank/wedatasphpere/dss/user/service/impl/LdapCommand.java

@@ -23,26 +23,15 @@ public class LdapCommand extends AbsCommand {
     @Override
     public String authorization(AuthorizationBody body) throws Exception {
 
-
-        String ldapScriptServer = DSSUserManagerConfig.BDP_SERVER_LDAP_SCRIPT_SERVER;
-        String ldapLoginUser = DSSUserManagerConfig.BDP_SERVER_LDAP_SCRIPT_LOGIN_USER;
-        String ldapLoginPassword = DSSUserManagerConfig.BDP_SERVER_LDAP_SCRIPT_LOGIN_PASSWORD;
-        String ldapPythonPath = DSSUserManagerConfig.BDP_SERVER_LDAP_SCRIPT_PYTHON_PATH;
-        String ldapSourcePath = DSSUserManagerConfig.BDP_SERVER_LDAP_SCRIPT_SOURCE_PATH;
-        String ldapSshPort = DSSUserManagerConfig.BDP_SERVER_LDAP_SCRIPT_SERVER_SSH_PORT;
         String userName = body.getUsername();
         String UserPassword = body.getPassword();
+        String dssDeployPath = DSSUserManagerConfig.DSS_DEPLOY_PATH;
 
         String bashCommand = this.getClass().getClassLoader().getResource("default/CreateLdapAccount.sh").getPath();
         String[] args = {
-                ldapScriptServer,
-                ldapLoginUser,
-                ldapLoginPassword,
-                ldapPythonPath,
-                ldapSourcePath,
                 userName,
                 UserPassword,
-                ldapSshPort,
+                dssDeployPath
         };
 
         return this.runShell(bashCommand, args);

dss-user-manager/src/main/java/com/webank/wedatasphpere/dss/user/service/impl/MetastoreCommand.java

@@ -2,35 +2,38 @@
 
 import com.typesafe.config.Config;
 import com.typesafe.config.ConfigFactory;
+import com.webank.wedatasphere.linkis.common.conf.CommonVars;
+import com.webank.wedatasphpere.dss.user.conf.DSSUserManagerConfig;
 import com.webank.wedatasphpere.dss.user.dto.request.AuthorizationBody;
 import com.webank.wedatasphpere.dss.user.service.AbsCommand;
 import com.webank.wedatasphpere.dss.user.service.Command;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
 
 /**
  * @author anlexander
  * @date 2021/1/5
  */
 public class MetastoreCommand extends AbsCommand {
+    private static final Logger logger = LoggerFactory.getLogger(MetastoreCommand.class);
 
     @Override
     public String authorization(AuthorizationBody body) throws Exception {
-        Config parms = ConfigFactory.load("config/properties.conf");
-        String rst = createDb(body,parms);
+        String rst = createDb(body);
         return rst != Command.SUCCESS ? rst : Command.SUCCESS;
     }
 
-    private String createDb(AuthorizationBody body, Config parms) throws Exception {
-
+    private String createDb(AuthorizationBody body) throws Exception {
         String bashCommand = null;
-        String scriptCmd = null;
+        String[] args = null;
         String userName = body.getUsername();
         if (userName != null) {
-                String dbName = userName + parms.getString("db_tail");
-                String path = parms.getString("base_path") + dbName + ".db";
-                bashCommand = getResource(parms.getString("metastore_sh"));
-                scriptCmd = String.format("%s %s %s %s %s %s", userName,dbName,path,
-                                         parms.getString("realm"),parms.getString("admin"),parms.getString("keytabPath"));
+            String dbName = userName + DSSUserManagerConfig.METASTORE_DB_TAIL;
+            String path = DSSUserManagerConfig.METASTORE_HDFS_PATH + "/"+dbName+".db";
+            bashCommand = getResource(DSSUserManagerConfig.METASTORE_SCRIPT_PAHT);
+            args = new String[]{ userName,dbName,path,
+                    DSSUserManagerConfig.KERBEROS_REALM,DSSUserManagerConfig.KERBEROS_ADMIN,DSSUserManagerConfig.KERBEROS_KEYTAB_PATH,DSSUserManagerConfig.KEBBEROS_ENABLE_SWITCH};
         }
-        return this.runShell(bashCommand, scriptCmd.split(" "));
+        return this.runShell(bashCommand, args);
     }
 }

dss-user-manager/src/main/resources/default/CreateLdapAccount.sh

@@ -1,18 +1,7 @@
 #!/bin/bash
 source /etc/profile
-server_host=$1
-server_login_user=$2
-server_login_password=$3
-server_python_path=$4
-server_ldap_source_path=$5
-ldap_user=$6
-ldap_password=$7
-echo "$server_login_password ssh $server_login_user@$server_host sudo python $server_python_path add_with_pw $ldap_user -p $ldap_password"
-sshpass -p $server_login_password ssh $server_login_user@$server_host "sudo python $server_python_path add_with_pw $ldap_user -p $ldap_password"
-#sshpass -p $server_login_password ssh $server_login_user@$server_host "sudo su - root -c 'source /etc/profile && source $server_ldap_source_path && sudo python $server_python_path add_with_pw $ldap_user -p $ldap_password && deactivate'"
-
+ldap_user=$1
+ldap_password=$2
+ldap_script_path=$3
+source $ldap_script_path/tools/venv/bin/activate && sudo $ldap_script_path/tools/venv/bin/python $ldap_script_path/tools/bin/ldap_user.py add_with_pw $ldap_user -p $ldap_password
 echo "******************LDAP USER CREATED***********************"
-
-
-
-