Untitled diff
创建于 差异永不过期
# Licensed to the Apache Software Foundation (ASF) under one or more
# contributor license agreements. See the NOTICE file distributed with
# this work for additional information regarding copyright ownership.
# The ASF licenses this file to You under the Apache License, Version 2.0
# (the "License"); you may not use this file except in compliance with
# the License. You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
# Hue configuration file
# Hue configuration file
# ===================================
# ===================================
#
#
# For complete documentation about the contents of this file, run
# For complete documentation about the contents of this file, run
# $ <hue_root>/build/env/bin/hue config_help
# $ <hue_root>/build/env/bin/hue config_help
#
#
# All .ini files under the current directory are treated equally. Their
# All .ini files under the current directory are treated equally. Their
# contents are merged to form the Hue configuration, which can
# contents are merged to form the Hue configuration, which can
# can be viewed on the Hue at
# can be viewed on the Hue at
# http://<hue_host>:<port>/dump_config
# http://<hue_host>:<port>/dump_config
###########################################################################
###########################################################################
# General configuration for core Desktop features (authentication, etc)
# General configuration for core Desktop features (authentication, etc)
###########################################################################
###########################################################################
[desktop]
[desktop]
send_dbug_messages=1
# To show database transactions, set database_logging to 1
database_logging=0
# Set this to a random string, the longer the better.
# Set this to a random string, the longer the better.
# This is used for secure hashing in the session store.
# This is used for secure hashing in the session store.
secret_key=
secret_key=deaddeafdeaddeafdeaddeafdeaddeafdeaddeafdeaddeafdeaddeaf
# Webserver listens on this address and port
# Webserver listens on this address and port
http_host=0.0.0.0
http_host=<%= @hue_host %>
http_port=8888
http_port=<%= @hue_port %>
# Time zone name
# Time zone name
time_zone=America/Los_Angeles
time_zone=America/Los_Angeles
# Enable or disable Django debug mode.
# Enable or disable Django debug mode.
django_debug_mode=false
django_debug_mode=false
# Enable or disable backtrace for server error
# Enable or disable backtrace for server error
http_500_debug_mode=false
http_500_debug_mode=false
# Enable or disable memory profiling.
# Enable or disable memory profiling.
## memory_profiler=false
## memory_profiler=false
# Server email for internal error messages
# Server email for internal error messages
## django_server_email='hue@localhost.localdomain'
## django_server_email='hue@localhost.localdomain'
# Email backend
# Email backend
## django_email_backend=django.core.mail.backends.smtp.EmailBackend
## django_email_backend=django.core.mail.backends.smtp.EmailBackend
# Webserver runs as this user
# Webserver runs as this user
## server_user=hue
server_user=hue
## server_group=hue
server_group=hue
# This should be the Hue admin and proxy user
# This should be the Hue admin and proxy user
## default_user=hue
## default_user=hue
# This should be the hadoop cluster admin
# This should be the hadoop cluster admin
## default_hdfs_superuser=hdfs
## default_hdfs_superuser=hdfs
# If set to false, runcpserver will not actually start the web server.
# If set to false, runcpserver will not actually start the web server.
# Used if Apache is being used as a WSGI container.
# Used if Apache is being used as a WSGI container.
## enable_server=yes
## enable_server=yes
# Number of threads used by the CherryPy web server
# Number of threads used by the CherryPy web server
## cherrypy_server_threads=10
## cherrypy_server_threads=10
# Filename of SSL Certificate
# Filename of SSL Certificate
## ssl_certificate=
## ssl_certificate=
# Filename of SSL RSA Private Key
# Filename of SSL RSA Private Key
## ssl_private_key=
## ssl_private_key=
# List of allowed and disallowed ciphers in cipher list format.
# List of allowed and disallowed ciphers in cipher list format.
# See http://www.openssl.org/docs/apps/ciphers.html for more information on cipher list format.
# See http://www.openssl.org/docs/apps/ciphers.html for more information on cipher list format.
## ssl_cipher_list=DEFAULT:!aNULL:!eNULL:!LOW:!EXPORT:!SSLv2
## ssl_cipher_list=DEFAULT:!aNULL:!eNULL:!LOW:!EXPORT:!SSLv2
# LDAP username and password of the hue user used for LDAP authentications.
# LDAP username and password of the hue user used for LDAP authentications.
# Set it to use LDAP Authentication with HiveServer2 and Impala.
# Set it to use LDAP Authentication with HiveServer2 and Impala.
## ldap_username=hue
## ldap_username=hue
## ldap_password=
## ldap_password=
# Default encoding for site data
# Default encoding for site data
## default_site_encoding=utf-8
## default_site_encoding=utf-8
# Help improve Hue with anonymous usage analytics.
# Help improve Hue with anonymous usage analytics.
# Use Google Analytics to see how many times an application or specific section of an application is used, nothing more.
# Use Google Analytics to see how many times an application or specific section of an application is used, nothing more.
## collect_usage=true
## collect_usage=true
# Support for HTTPS termination at the load-balancer level with SECURE_PROXY_SSL_HEADER.
# Support for HTTPS termination at the load-balancer level with SECURE_PROXY_SSL_HEADER.
## secure_proxy_ssl_header=false
## secure_proxy_ssl_header=false
# Comma-separated list of Django middleware classes to use.
# Comma-separated list of Django middleware classes to use.
# See https://docs.djangoproject.com/en/1.4/ref/middleware/ for more details on middlewares in Django.
# See https://docs.djangoproject.com/en/1.4/ref/middleware/ for more details on middlewares in Django.
## middleware=desktop.auth.backend.LdapSynchronizationBackend
## middleware=desktop.auth.backend.LdapSynchronizationBackend
# Comma-separated list of regular expressions, which match the redirect URL.
# Comma-separated list of regular expressions, which match the redirect URL.
# For example, to restrict to your local domain and FQDN, the following value can be used:
# For example, to restrict to your local domain and FQDN, the following value can be used:
# ^\/.*$,^http:\/\/www.mydomain.com\/.*$
# ^\/.*$,^http:\/\/www.mydomain.com\/.*$
## redirect_whitelist=
## redirect_whitelist=
# Comma separated list of apps to not load at server startup.
# Comma separated list of apps to not load at server startup.
# e.g.: pig,zookeeper
# e.g.: pig,zookeeper
## app_blacklist=
## app_blacklist=
# The directory where to store the auditing logs. Auditing is disable if the value is empty.
# The directory where to store the auditing logs. Auditing is disable if the value is empty.
# e.g. /var/log/hue/audit.log
# e.g. /var/log/hue/audit.log
## audit_event_log_dir=
## audit_event_log_dir=
# Size in KB/MB/GB for audit log to rollover.
# Size in KB/MB/GB for audit log to rollover.
## audit_log_max_file_size=100MB
## audit_log_max_file_size=100MB
# Administrators
# Administrators
# ----------------
# ----------------
[[django_admins]]
[[django_admins]]
## [[[admin1]]]
## [[[admin1]]]
## name=john
## name=john
## email=john@doe.com
## email=john@doe.com
# UI customizations
# UI customizations
# -------------------
# -------------------
[[custom]]
[[custom]]
# Top banner HTML code
# Top banner HTML code
# e.g. <H2>Test Lab A2 Hue Services</H2>
# e.g. <H2>Test Lab A2 Hue Services</H2>
## banner_top_html=
## banner_top_html=
# Configuration options for user authentication into the web application
# Configuration options for user authentication into the web application
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[auth]]
[[auth]]
# Authentication backend. Common settings are:
# Authentication backend. Common settings are:
# - django.contrib.auth.backends.ModelBackend (entirely Django backend)
# - django.contrib.auth.backends.ModelBackend (entirely Django backend)
# - desktop.auth.backend.AllowAllBackend (allows everyone)
# - desktop.auth.backend.AllowAllBackend (allows everyone)
# - desktop.auth.backend.AllowFirstUserDjangoBackend
# - desktop.auth.backend.AllowFirstUserDjangoBackend
# (Default. Relies on Django and user manager, after the first login)
# (Default. Relies on Django and user manager, after the first login)
# - desktop.auth.backend.LdapBackend
# - desktop.auth.backend.LdapBackend
# - desktop.auth.backend.PamBackend
# - desktop.auth.backend.PamBackend
# - desktop.auth.backend.SpnegoDjangoBackend
# - desktop.auth.backend.SpnegoDjangoBackend
# - desktop.auth.backend.RemoteUserDjangoBackend
# - desktop.auth.backend.RemoteUserDjangoBackend
# - libsaml.backend.SAML2Backend
# - libsaml.backend.SAML2Backend
# - libopenid.backend.OpenIDBackend
# - libopenid.backend.OpenIDBackend
# - liboauth.backend.OAuthBackend
# - liboauth.backend.OAuthBackend
# (Support Twitter, Facebook, Google+ and Linkedin
# (Support Twitter, Facebook, Google+ and Linkedin
## backend=desktop.auth.backend.AllowFirstUserDjangoBackend
## backend=desktop.auth.backend.AllowFirstUserDjangoBackend
# The service to use when querying PAM.
# The service to use when querying PAM.
## pam_service=login
## pam_service=login
# When using the desktop.auth.backend.RemoteUserDjangoBackend, this sets
# When using the desktop.auth.backend.RemoteUserDjangoBackend, this sets
# the normalized name of the header that contains the remote user.
# the normalized name of the header that contains the remote user.
# The HTTP header in the request is converted to a key by converting
# The HTTP header in the request is converted to a key by converting
# all characters to uppercase, replacing any hyphens with underscores
# all characters to uppercase, replacing any hyphens with underscores
# and adding an HTTP_ prefix to the name. So, for example, if the header
# and adding an HTTP_ prefix to the name. So, for example, if the header
# is called Remote-User that would be configured as HTTP_REMOTE_USER
# is called Remote-User that would be configured as HTTP_REMOTE_USER
#
#
# Defaults to HTTP_REMOTE_USER
# Defaults to HTTP_REMOTE_USER
## remote_user_header=HTTP_REMOTE_USER
## remote_user_header=HTTP_REMOTE_USER
# Synchronize a users groups when they login
# Synchronize a users groups when they login
## sync_groups_on_login=false
## sync_groups_on_login=false
# Ignore the case of usernames when searching for existing users.
# Ignore the case of usernames when searching for existing users.
# Only supported in remoteUserDjangoBackend.
# Only supported in remoteUserDjangoBackend.
## ignore_username_case=false
## ignore_username_case=false
# Ignore the case of usernames when searching for existing users to authenticate with.
# Ignore the case of usernames when searching for existing users to authenticate with.
# Only supported in remoteUserDjangoBackend.
# Only supported in remoteUserDjangoBackend.
## force_username_lowercase=false
## force_username_lowercase=false
# Users will expire after they have not logged in for 'n' amount of seconds.
# Users will expire after they have not logged in for 'n' amount of seconds.
# A negative number means that users will never expire.
# A negative number means that users will never expire.
## expires_after=-1
## expires_after=-1
# Apply 'expires_after' to superusers.
# Apply 'expires_after' to superusers.
## expire_superusers=true
## expire_superusers=true
# Configuration options for connecting to LDAP and Active Directory
# Configuration options for connecting to LDAP and Active Directory
# -------------------------------------------------------------------
# -------------------------------------------------------------------
[[ldap]]
[[ldap]]
# The search base for finding users and groups
# The search base for finding users and groups
## base_dn="DC=mycompany,DC=com"
## base_dn="DC=mycompany,DC=com"
# URL of the LDAP server
# URL of the LDAP server
## ldap_url=ldap://auth.mycompany.com
## ldap_url=ldap://auth.mycompany.com
# A PEM-format file containing certificates for the CA's that
# A PEM-format file containing certificates for the CA's that
# Hue will trust for authentication over TLS.
# Hue will trust for authentication over TLS.
# The certificate for the CA that signed the
# The certificate for the CA that signed the
# LDAP server certificate must be included among these certificates.
# LDAP server certificate must be included among these certificates.
# See more here http://www.openldap.org/doc/admin24/tls.html.
# See more here http://www.openldap.org/doc/admin24/tls.html.
## ldap_cert=
## ldap_cert=
## use_start_tls=true
## use_start_tls=true
# Distinguished name of the user to bind as -- not necessary if the LDAP server
# Distinguished name of the user to bind as -- not necessary if the LDAP server
# supports anonymous searches
# supports anonymous searches
## bind_dn="CN=ServiceAccount,DC=mycompany,DC=com"
## bind_dn="CN=ServiceAccount,DC=mycompany,DC=com"
# Password of the bind user -- not necessary if the LDAP server supports
# Password of the bind user -- not necessary if the LDAP server supports
# anonymous searches
# anonymous searches
## bind_password=
## bind_password=
# Pattern for searching for usernames -- Use <username> for the parameter
# Pattern for searching for usernames -- Use <username> for the parameter
# For use when using LdapBackend for Hue authentication
# For use when using LdapBackend for Hue authentication
## ldap_username_pattern="uid=<username>,ou=People,dc=mycompany,dc=com"
## ldap_username_pattern="uid=<username>,ou=People,dc=mycompany,dc=com"
# Create users in Hue when they try to login with their LDAP credentials
# Create users in Hue when they try to login with their LDAP credentials
# For use when using LdapBackend for Hue authentication
# For use when using LdapBackend for Hue authentication
## create_users_on_login = true
## create_users_on_login = true
# Ignore the case of usernames when searching for existing users in Hue.
# Ignore the case of usernames when searching for existing users in Hue.
## ignore_username_case=false
## ignore_username_case=false
# Force usernames to lowercase when creating new users from LDAP.
# Force usernames to lowercase when creating new users from LDAP.
## force_username_lowercase=false
## force_username_lowercase=false
# Use search bind authentication.
# Use search bind authentication.
## search_bind_authentication=true
## search_bind_authentication=true
# Choose which kind of subgrouping to use: nested or suboordinate (deprecated).
# Choose which kind of subgrouping to use: nested or suboordinate (deprecated).
## subgroups=suboordinate
## subgroups=suboordinate
# Define the number of levels to search for nested members.
# Define the number of levels to search for nested members.
## nested_members_search_depth=10
## nested_members_search_depth=10
[[[users]]]
[[[users]]]
# Base filter for searching for users
# Base filter for searching for users
## user_filter="objectclass=*"
## user_filter="objectclass=*"
# The username attribute in the LDAP schema
# The username attribute in the LDAP schema
## user_name_attr=sAMAccountName
## user_name_attr=sAMAccountName
[[[groups]]]
[[[groups]]]
# Base filter for searching for groups
# Base filter for searching for groups
## group_filter="objectclass=*"
## group_filter="objectclass=*"
# The group name attribute in the LDAP schema
# The group name attribute in the LDAP schema
## group_name_attr=cn
## group_name_attr=cn
# The attribute of the group object which identifies the members of the group
# The attribute of the group object which identifies the members of the group
## group_member_attr=members
## group_member_attr=members
[[[ldap_servers]]]
[[[ldap_servers]]]
## [[[[mycompany]]]]
## [[[[mycompany]]]]
# The search base for finding users and groups
# The search base for finding users and groups
## base_dn="DC=mycompany,DC=com"
## base_dn="DC=mycompany,DC=com"
# URL of the LDAP server
# URL of the LDAP server
## ldap_url=ldap://auth.mycompany.com
## ldap_url=ldap://auth.mycompany.com
# A PEM-format file containing certificates for the CA's that
# A PEM-format file containing certificates for the CA's that
# Hue will trust for authentication over TLS.
# Hue will trust for authentication over TLS.
# The certificate for the CA that signed the
# The certificate for the CA that signed the
# LDAP server certificate must be included among these certificates.
# LDAP server certificate must be included among these certificates.
# See more here http://www.openldap.org/doc/admin24/tls.html.
# See more here http://www.openldap.org/doc/admin24/tls.html.
## ldap_cert=
## ldap_cert=
## use_start_tls=true
## use_start_tls=true
# Distinguished name of the user to bind as -- not necessary if the LDAP server
# Distinguished name of the user to bind as -- not necessary if the LDAP server
# supports anonymous searches
# supports anonymous searches
## bind_dn="CN=ServiceAccount,DC=mycompany,DC=com"
## bind_dn="CN=ServiceAccount,DC=mycompany,DC=com"
# Password of the bind user -- not necessary if the LDAP server supports
# Password of the bind user -- not necessary if the LDAP server supports
# anonymous searches
# anonymous searches
## bind_password=
## bind_password=
# Pattern for searching for usernames -- Use <username> for the parameter
# Pattern for searching for usernames -- Use <username> for the parameter
# For use when using LdapBackend for Hue authentication
# For use when using LdapBackend for Hue authentication
## ldap_username_pattern="uid=<username>,ou=People,dc=mycompany,dc=com"
## ldap_username_pattern="uid=<username>,ou=People,dc=mycompany,dc=com"
## Use search bind authentication.
## Use search bind authentication.
## search_bind_authentication=true
## search_bind_authentication=true
## [[[[[users]]]]]
## [[[[[users]]]]]
# Base filter for searching for users
# Base filter for searching for users
## user_filter="objectclass=Person"
## user_filter="objectclass=Person"
# The username attribute in the LDAP schema
# The username attribute in the LDAP schema
## user_name_attr=sAMAccountName
## user_name_attr=sAMAccountName
## [[[[[groups]]]]]
## [[[[[groups]]]]]
# Base filter for searching for groups
# Base filter for searching for groups
## group_filter="objectclass=groupOfNames"
## group_filter="objectclass=groupOfNames"
# The username attribute in the LDAP schema
# The username attribute in the LDAP schema
## group_name_attr=cn
## group_name_attr=cn
# Configuration options for specifying the Desktop Database. For more info,
# Configuration options for specifying the Desktop Database. For more info,
# see http://docs.djangoproject.com/en/1.4/ref/settings/#database-engine
# see http://docs.djangoproject.com/en/1.4/ref/settings/#database-engine
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[database]]
[[database]]
engine=sqlite3
name=/var/lib/hue/desktop.db
# Database engine is typically one of:
# Database engine is typically one of:
# postgresql_psycopg2, mysql, sqlite3 or oracle.
# postgresql_psycopg2, mysql, sqlite3 or oracle.
#
#
# Note that for sqlite3, 'name', below is a path to the filename. For other backends, it is the database name.
# Note that for sqlite3, 'name', below is a path to the filename. For other backends, it is the database name.
# Note for Oracle, options={'threaded':true} must be set in order to avoid crashes.
# Note for Oracle, options={'threaded':true} must be set in order to avoid crashes.
# Note for Oracle, you can use the Oracle Service Name by setting "port=0" and then "name=<host>:<port>/<service_name>".
# Note for Oracle, you can use the Oracle Service Name by setting "port=0" and then "name=<host>:<port>/<service_name>".
## engine=sqlite3
## engine=sqlite3
## host=
## host=
## port=
## port=
## user=
## user=
## password=
## password=
## name=desktop/desktop.db
## name=desktop/desktop.db
## options={}
## options={}
# Configuration options for specifying the Desktop session.
# Configuration options for specifying the Desktop session.
# For more info, see https://docs.djangoproject.com/en/1.4/topics/http/sessions/
# For more info, see https://docs.djangoproject.com/en/1.4/topics/http/sessions/
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[session]]
[[session]]
# The cookie containing the users' session ID will expire after this amount of time in seconds.
# The cookie containing the users' session ID will expire after this amount of time in seconds.
# Default is 2 weeks.
# Default is 2 weeks.
## ttl=1209600
## ttl=1209600
# The cookie containing the users' session ID will be secure.
# The cookie containing the users' session ID will be secure.
# Should only be enabled with HTTPS.
# Should only be enabled with HTTPS.
## secure=false
## secure=false
# The cookie containing the users' session ID will use the HTTP only flag.
# The cookie containing the users' session ID will use the HTTP only flag.
## http_only=false
## http_only=false
# Use session-length cookies. Logs out the user when she closes the browser window.
# Use session-length cookies. Logs out the user when she closes the browser window.
## expire_at_browser_close=false
## expire_at_browser_close=false
# Configuration options for connecting to an external SMTP server
# Configuration options for connecting to an external SMTP server
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[smtp]]
[[smtp]]
# The SMTP server information for email notification delivery
# The SMTP server information for email notification delivery
host=localhost
host=localhost
port=25
port=25
user=
user=
password=
password=
# Whether to use a TLS (secure) connection when talking to the SMTP server
# Whether to use a TLS (secure) connection when talking to the SMTP server
tls=no
tls=no
# Default email address to use for various automated notification from Hue
# Default email address to use for various automated notification from Hue
## default_from_email=hue@localhost
## default_from_email=hue@localhost
<% if @kerberos_realm != "" %>
# Configuration options for Kerberos integration for secured Hadoop clusters
# Configuration options for Kerberos integration for secured Hadoop clusters
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[kerberos]]
[[kerberos]]
# Path to Hue's Kerberos keytab file
# Path to Hue's Kerberos keytab file
## hue_keytab=
hue_keytab=/etc/hue.keytab
# Kerberos principal name for Hue
# Kerberos principal name for Hue
## hue_principal=hue/hostname.foo.com
hue_principal=hue/<%= @fqdn %>
# Path to kinit
# Path to kinit
## kinit_path=/path/to/kinit
kinit_path=<%= (@operatingsystem == 'ubuntu') ? '/usr/bin' : '/usr/kerberos/bin' %>/kinit
<% end %>
# Configuration options for using OAuthBackend (core) login
# Configuration options for using OAuthBackend (core) login
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[oauth]]
[[oauth]]
# The Consumer key of the application
# The Consumer key of the application
## consumer_key=XXXXXXXXXXXXXXXXXXXXX
## consumer_key=XXXXXXXXXXXXXXXXXXXXX
# The Consumer secret of the application
# The Consumer secret of the application
## consumer_secret=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
## consumer_secret=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
# The Request token URL
# The Request token URL
## request_token_url=https://api.twitter.com/oauth/request_token
## request_token_url=https://api.twitter.com/oauth/request_token
# The Access token URL
# The Access token URL
## access_token_url=https://api.twitter.com/oauth/access_token
## access_token_url=https://api.twitter.com/oauth/access_token
# The Authorize URL
# The Authorize URL
## authenticate_url=https://api.twitter.com/oauth/authorize
## authenticate_url=https://api.twitter.com/oauth/authorize
###########################################################################
###########################################################################
# Settings to configure SAML
# Settings to configure SAML
###########################################################################
###########################################################################
[libsaml]
[libsaml]
# Xmlsec1 binary path. This program should be executable by the user running Hue.
# Xmlsec1 binary path. This program should be executable by the user running Hue.
## xmlsec_binary=/usr/local/bin/xmlsec1
## xmlsec_binary=/usr/local/bin/xmlsec1
# Entity ID for Hue acting as service provider.
# Entity ID for Hue acting as service provider.
# Can also accept a pattern where '<base_url>' will be replaced with server URL base.
# Can also accept a pattern where '<base_url>' will be replaced with server URL base.
## entity_id="<base_url>/saml2/metadata/"
## entity_id="<base_url>/saml2/metadata/"
# Create users from SSO on login.
# Create users from SSO on login.
## create_users_on_login=true
## create_users_on_login=true
# Required attributes to ask for from IdP.
# Required attributes to ask for from IdP.
# This requires a comma separated list.
# This requires a comma separated list.
## required_attributes=uid
## required_attributes=uid
# Optional attributes to ask for from IdP.
# Optional attributes to ask for from IdP.
# This requires a comma separated list.
# This requires a comma separated list.
## optional_attributes=
## optional_attributes=
# IdP metadata in the form of a file. This is generally an XML file containing metadata that the Identity Provider generates.
# IdP metadata in the form of a file. This is generally an XML file containing metadata that the Identity Provider generates.
## metadata_file=
## metadata_file=
# Private key to encrypt metadata with.
# Private key to encrypt metadata with.
## key_file=
## key_file=
# Signed certificate to send along with encrypted metadata.
# Signed certificate to send along with encrypted metadata.
## cert_file=
## cert_file=
# A mapping from attributes in the response from the IdP to django user attributes.
# A mapping from attributes in the response from the IdP to django user attributes.
## user_attribute_mapping={'uid':'username'}
## user_attribute_mapping={'uid':'username'}
# Have Hue initiated authn requests be signed and provide a certificate.
# Have Hue initiated authn requests be signed and provide a certificate.
## authn_requests_signed=false
## authn_requests_signed=false
# Have Hue initiated logout requests be signed and provide a certificate.
# Have Hue initiated logout requests be signed and provide a certificate.
## logout_requests_signed=false
## logout_requests_signed=false
## Username can be sourced from 'attributes' or 'nameid'.
## Username can be sourced from 'attributes' or 'nameid'.
## username_source=attributes
## username_source=attributes
# Performs the logout or not.
# Performs the logout or not.
## logout_enabled=true
## logout_enabled=true
###########################################################################
###########################################################################
# Settings to configure OPENID
# Settings to configure OPENID
###########################################################################
###########################################################################
[libopenid]
[libopenid]
# (Required) OpenId SSO endpoint url.
# (Required) OpenId SSO endpoint url.
## server_endpoint_url=https://www.google.com/accounts/o8/id
## server_endpoint_url=https://www.google.com/accounts/o8/id
# OpenId 1.1 identity url prefix to be used instead of SSO endpoint url
# OpenId 1.1 identity url prefix to be used instead of SSO endpoint url
# This is only supported if you are using an OpenId 1.1 endpoint
# This is only supported if you are using an OpenId 1.1 endpoint
## identity_url_prefix=https://app.onelogin.com/openid/your_company.com/
## identity_url_prefix=https://app.onelogin.com/openid/your_company.com/
# Create users from OPENID on login.
# Create users from OPENID on login.
## create_users_on_login=true
## create_users_on_login=true
# Use email for username
# Use email for username
## use_email_for_username=true
## use_email_for_username=true
###########################################################################
###########################################################################
# Settings to configure OAuth
# Settings to configure OAuth
###########################################################################
###########################################################################
[liboauth]
[liboauth]
# NOTE:
# NOTE:
# To work, each of the active (i.e. uncommented) service must have
# To work, each of the active (i.e. uncommented) service must have
# applications created on the social network.
# applications created on the social network.
# Then the "consumer key" and "consumer secret" must be provided here.
# Then the "consumer key" and "consumer secret" must be provided here.
#
#
# The addresses where to do so are:
# The addresses where to do so are:
# Twitter: https://dev.twitter.com/apps
# Twitter: https://dev.twitter.com/apps
# Google+ : https://cloud.google.com/
# Google+ : https://cloud.google.com/
# Facebook: https://developers.facebook.com/apps
# Facebook: https://developers.facebook.com/apps
# Linkedin: https://www.linkedin.com/secure/developer
# Linkedin: https://www.linkedin.com/secure/developer
#
#
# Additionnaly, the following must be set in the application settings:
# Additionnaly, the following must be set in the application settings:
# Twitter: Callback URL (aka Redirect URL) must be set to http://YOUR_HUE_IP_OR_DOMAIN_NAME/oauth/social_login/oauth_authenticated
# Twitter: Callback URL (aka Redirect URL) must be set to http://YOUR_HUE_IP_OR_DOMAIN_NAME/oauth/social_login/oauth_authenticated
# Google+ : CONSENT SCREEN must have email address
# Google+ : CONSENT SCREEN must have email address
# Facebook: Sandbox Mode must be DISABLED
# Facebook: Sandbox Mode must be DISABLED
# Linkedin: "In OAuth User Agreement", r_emailaddress is REQUIRED
# Linkedin: "In OAuth User Agreement", r_emailaddress is REQUIRED
# The Consumer key of the application
# The Consumer key of the application
## consumer_key_twitter=
## consumer_key_twitter=
## consumer_key_google=
## consumer_key_google=
## consumer_key_facebook=
## consumer_key_facebook=
## consumer_key_linkedin=
## consumer_key_linkedin=
# The Consumer secret of the application
# The Consumer secret of the application
## consumer_secret_twitter=
## consumer_secret_twitter=
## consumer_secret_google=
## consumer_secret_google=
## consumer_secret_facebook=
## consumer_secret_facebook=
## consumer_secret_linkedin=
## consumer_secret_linkedin=
# The Request token URL
# The Request token URL
## request_token_url_twitter=https://api.twitter.com/oauth/request_token
## request_token_url_twitter=https://api.twitter.com/oauth/request_token
## request_token_url_google=https://accounts.google.com/o/oauth2/auth
## request_token_url_google=https://accounts.google.com/o/oauth2/auth
## request_token_url_linkedin=https://www.linkedin.com/uas/oauth2/authorization
## request_token_url_linkedin=https://www.linkedin.com/uas/oauth2/authorization
## request_token_url_facebook=https://graph.facebook.com/oauth/authorize
## request_token_url_facebook=https://graph.facebook.com/oauth/authorize
# The Access token URL
# The Access token URL
## access_token_url_twitter=https://api.twitter.com/oauth/access_token
## access_token_url_twitter=https://api.twitter.com/oauth/access_token
## access_token_url_google=https://accounts.google.com/o/oauth2/token
## access_token_url_google=https://accounts.google.com/o/oauth2/token
## access_token_url_facebook=https://graph.facebook.com/oauth/access_token
## access_token_url_facebook=https://graph.facebook.com/oauth/access_token
## access_token_url_linkedin=https://api.linkedin.com/uas/oauth2/accessToken
## access_token_url_linkedin=https://api.linkedin.com/uas/oauth2/accessToken
# The Authenticate URL
# The Authenticate URL
## authenticate_url_twitter=https://api.twitter.com/oauth/authorize
## authenticate_url_twitter=https://api.twitter.com/oauth/authorize
## authenticate_url_google=https://www.googleapis.com/oauth2/v1/userinfo?access_token=
## authenticate_url_google=https://www.googleapis.com/oauth2/v1/userinfo?access_token=
## authenticate_url_facebook=https://graph.facebook.com/me?access_token=
## authenticate_url_facebook=https://graph.facebook.com/me?access_token=
## authenticate_url_linkedin=https://api.linkedin.com/v1/people/~:(email-address)?format=json&oauth2_access_token=
## authenticate_url_linkedin=https://api.linkedin.com/v1/people/~:(email-address)?format=json&oauth2_access_token=
# Username Map. Json Hash format.
# Username Map. Json Hash format.
# Replaces username parts in order to simplify usernames obtained
# Replaces username parts in order to simplify usernames obtained
# Example: {"@sub1.domain.com":"_S1", "@sub2.domain.com":"_S2"}
# Example: {"@sub1.domain.com":"_S1", "@sub2.domain.com":"_S2"}
# converts 'email@sub1.domain.com' to 'email_S1'
# converts 'email@sub1.domain.com' to 'email_S1'
## username_map={}
## username_map={}
# Whitelisted domains (only applies to Google OAuth). CSV format.
# Whitelisted domains (only applies to Google OAuth). CSV format.
## whitelisted_domains_google=
## whitelisted_domains_google=
###########################################################################
###########################################################################
# Settings for the RDBMS application
# Settings for the RDBMS application
###########################################################################
###########################################################################
[librdbms]
[librdbms]
# The RDBMS app can have any number of databases configured in the databases
# The RDBMS app can have any number of databases configured in the databases
# section. A database is known by its section name
# section. A database is known by its section name
# (IE sqlite, mysql, psql, and oracle in the list below).
# (IE sqlite, mysql, psql, and oracle in the list below).
[[databases]]
[[databases]]
# sqlite configuration.
# sqlite configuration.
## [[[sqlite]]]
## [[[sqlite]]]
# Name to show in the UI.
# Name to show in the UI.
## nice_name=SQLite
## nice_name=SQLite
# For SQLite, name defines the path to the database.
# For SQLite, name defines the path to the database.
## name=/tmp/sqlite.db
## name=/tmp/sqlite.db
# Database backend to use.
# Database backend to use.
## engine=sqlite
## engine=sqlite
# Database options to send to the server when connecting.
# Database options to send to the server when connecting.
# https://docs.djangoproject.com/en/1.4/ref/databases/
# https://docs.djangoproject.com/en/1.4/ref/databases/
## options={}
## options={}
# mysql, oracle, or postgresql configuration.
# mysql, oracle, or postgresql configuration.
## [[[mysql]]]
## [[[mysql]]]
# Name to show in the UI.
# Name to show in the UI.
## nice_name="My SQL DB"
## nice_name="My SQL DB"
# For MySQL and PostgreSQL, name is the name of the database.
# For MySQL and PostgreSQL, name is the name of the database.
# For Oracle, Name is instance of the Oracle server. For express edition
# For Oracle, Name is instance of the Oracle server. For express edition
# this is 'xe' by default.
# this is 'xe' by default.
## name=mysqldb
## name=mysqldb
# Database backend to use. This can be:
# Database backend to use. This can be:
# 1. mysql
# 1. mysql
# 2. postgresql
# 2. postgresql
# 3. oracle
# 3. oracle
## engine=mysql
## engine=mysql
# IP or hostname of the database to connect to.
# IP or hostname of the database to connect to.
## host=localhost
## host=localhost
# Port the database server is listening to. Defaults are:
# Port the database server is listening to. Defaults are:
# 1. MySQL: 3306
# 1. MySQL: 3306
# 2. PostgreSQL: 5432
# 2. PostgreSQL: 5432
# 3. Oracle Express Edition: 1521
# 3. Oracle Express Edition: 1521
## port=3306
## port=3306
# Username to authenticate with when connecting to the database.
# Username to authenticate with when connecting to the database.
## user=example
## user=example
# Password matching the username to authenticate with when
# Password matching the username to authenticate with when
# connecting to the database.
# connecting to the database.
## password=example
## password=example
# Database options to send to the server when connecting.
# Database options to send to the server when connecting.
# https://docs.djangoproject.com/en/1.4/ref/databases/
# https://docs.djangoproject.com/en/1.4/ref/databases/
## options={}
## options={}
###########################################################################
###########################################################################
# Settings to configure your Hadoop cluster.
# Settings to configure your Hadoop cluster.
###########################################################################
###########################################################################
[hadoop]
[hadoop]
# Configuration for HDFS NameNode
# Configuration for HDFS NameNode
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[hdfs_clusters]]
[[hdfs_clusters]]
# HA support by using HttpFs
# HA support by using HttpFs
[[[default]]]
[[[default]]]
# Enter the filesystem uri
# Enter the filesystem uri
fs_defaultfs=hdfs://localhost:8020
fs_defaultfs=<%= @default_fs %>
# NameNode logical name.
# NameNode logical name.
## logical_name=
## logical_name=
# Use WebHdfs/HttpFs as the communication mechanism.
# Use WebHdfs/HttpFs as the communication mechanism.
# Domain should be the NameNode or HttpFs host.
# Domain should be the NameNode or HttpFs host.
# Default port is 14000 for HttpFs.
# Default port is 14000 for HttpFs.
## webhdfs_url=http://localhost:50070/webhdfs/v1
webhdfs_url=<%= @webhdfs_url %>
# Change this if your HDFS cluster is Kerberos-secured
# Change this if your HDFS cluster is Kerberos-secured
## security_enabled=false
security_enabled=<%= if (@kerberos_realm != "") ; "true" else "false" end %>
# Default umask for file and directory creation, specified in an octal value.
# Default umask for file and directory creation, specified in an octal value.
## umask=022
## umask=022
# Configuration for YARN (MR2)
# Configuration for YARN (MR2)
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[yarn_clusters]]
[[yarn_clusters]]
[[[default]]]
[[[default]]]
# Enter the host on which you are running the ResourceManager
# Enter the host on which you are running the ResourceManager
## resourcemanager_host=localhost
resourcemanager_host=<%= @rm_host %>
# The port where the ResourceManager IPC listens on
# The port where the ResourceManager IPC listens on
## resourcemanager_port=8032
resourcemanager_port=<%= @rm_port %>
# Whether to submit jobs to this cluster
# Whether to submit jobs to this cluster
submit_to=True
submit_to=True
# Resource Manager logical name (required for HA)
# Resource Manager logical name (required for HA)
## logical_name=
## logical_name=
# Change this if your YARN cluster is Kerberos-secured
# Change this if your YARN cluster is Kerberos-secured
## security_enabled=false
security_enabled=<%= if (@kerberos_realm != "") ; "true" else "false" end %>
# URL of the ResourceManager API
# URL of the ResourceManager API
## resourcemanager_api_url=http://localhost:8088
resourcemanager_api_url=<%= @rm_url %>
# URL of the ProxyServer API
# URL of the ProxyServer API
## proxy_api_url=http://localhost:8088
proxy_api_url=<%= @rm_proxy_url %>
# URL of the HistoryServer API
# URL of the HistoryServer API
# history_server_api_url=http://localhost:19888
history_server_api_url=<%= @history_server_url %>
# HA support by specifying multiple clusters
# HA support by specifying multiple clusters
# e.g.
# e.g.
# [[[ha]]]
# [[[ha]]]
# Resource Manager logical name (required for HA)
# Resource Manager logical name (required for HA)
# logical_name=my-rm-name
# logical_name=my-rm-name
# Configuration for MapReduce (MR1)
# Configuration for MapReduce (MR1)
# ------------------------------------------------------------------------
# ------------------------------------------------------------------------
[[mapred_clusters]]
[[mapred_clusters]]
[[[default]]]
[[[default]]]
# Enter the host on which you are running the Hadoop JobTracker
# Enter the host on which you are running the Hadoop JobTracker
## jobtracker_host=localhost
## jobtracker_host=localhost
# The port where the JobTracker IPC listens on
# The port where the JobTracker IPC listens on
## jobtracker_port=8021
## jobtracker_port=8021
# JobTracker logical name for HA
# JobTracker logical name for HA
## logical_name=
## logical_name=
# Thrift plug-in port for the JobTracker
# Thrift plug-in port for the JobTracker
## thrift_port=9290
## thrift_port=9290
# Whether to submit jobs to this cluster
# Whether to submit jobs to this cluster
submit_to=False
submit_to=False
# Change this if your MapReduce cluster is Kerberos-secured
# Change this if your MapReduce cluster is Kerberos-secured
## security_enabled=false
## security_enabled=false
# HA support by specifying multiple clusters
# HA support by specifying multiple clusters
# e.g.
# e.g.
# [[[ha]]]
# [[[ha]]]
# Enter the logical name of the JobTrackers
# Enter the logical name of the JobTrackers
# logical_name=my-jt-name
# logical_name=my-jt-name
###########################################################################
###########################################################################
# Settings to configure the Filebrowser app
# Settings to configure the Filebrowser app
###########################################################################
###########################################################################
[filebrowser]
[filebrowser]
# Location on local filesystem where the uploaded archives are temporary stored.
# Location on local filesystem where the uploaded archives are temporary stored.
## archive_upload_tempdir=/tmp
## archive_upload_tempdir=/tmp
###########################################################################
###########################################################################
# Settings to configure liboozie
# Settings to configure liboozie
###########################################################################
####################################
[liboozie]
# The URL where the Oozie service runs on. This is required in order for
# users to submit jobs. Empty value disables the config check.
## oozie_url=http://localhost:11000/oozie
# Requires FQDN in oozie_url if enabled
## security_enabled=false
# Location on HDFS where the workflows/coordinator are deployed when submitted.
## remote_deployement_dir=/user/hue/oozie/deployments
###########################################################################
# Settings to configure the Oozie app
###########################################################################
[oozie]
# Location on local FS where the examples are stored.
## local_data_dir=..../examples
# Location on local FS where the data for the examples is stored.
## sample_data_dir=...thirdparty/sample_data
# Location on HDFS where the oozie examples and workflows are stored.
## remote_data_dir=/user/hue/oozie/workspaces
# Maximum of Oozie workflows or coodinators to retrieve in one API call.
## oozie_jobs_count=100
# Use Cron format for defini