Reply
Highlighted
Explorer
Posts: 8
Registered: ‎10-25-2016
Accepted Solution

HDFS ACL Inheritance doesn't work

Hi All
How do i ensure that the child dir and files created by a member of a group having rwx permissions on hdfs have the same rwx permission as parent?
I tried chmod and acls both as suggested by apache and cloudera. All the new dirs created by a user in a group having permission to write are still having the r-x permissions instead of rwx which i want.
I have also enabled dfs.namenode.posix.acl.inheritance.enabled to true and dfs.permissions also to true as mentioned in https://issues.apache.org/jira/browse/HDFS-6962.
fs.permissions.umask-mode=000
dfs.umaskmode, fs.permissions.umask-mode=022

[root@dev ~]# id abhig
uid=515(abhig) gid=519(abhig) groups=519(abhig),525(low_priority),528(devgrp)
********************************************
[abhig@dev ~]$ hdfs dfs -setfacl -m default:group:devgrp:rwx /test
[abhig@dev ~]$ hdfs dfs -getfacl /test
# file: /test
# owner: abhig
# group: devgrp
user::rwx
group::r-x
other::r-x
default:user::rwx
default:group::r-x
default:group:devgrp:rwx
default:mask::rwx
default:other::r-x
********************************************
[abhig@dev ~]$ hdfs dfs -mkdir /test/tst1
[abhig@dev ~]$ hdfs dfs -getfacl /test/tst1
# file: /test/tst1
# owner: abhig
# group: devgrp
user::rwx
group::r-x
group:devgrp:rwx #effective:r-x
mask::r-x
other::r-x
default:user::rwx
default:group::r-x
default:group:devgrp:rwx
default:mask::rwx
default:other::r-x
*********************************************

This doesn't help much

https://community.cloudera.com/t5/Storage-Random-Access-HDFS/HDFS-ACL-Inheritance/m-p/25494#M1092 

 

Please give a workaround if any.

Abhishek
Explorer
Posts: 8
Registered: ‎10-25-2016

Re: HDFS ACL Inheritance doesn't work

Changing default umask through cloudera manager properties of HDFS from 022 to 002 helped out to get child dir inherit the permissions from parent dir.

Abhishek
Announcements