THIS IS ACTUALLY AN ARTICLE, NOT A QUESTION I want to show you the power of some built-in Hive functions to transform JSON data, which is 'normalized' (optimized for transport) into a denormalized format which is much more suitable for data analysis. This demo has been tested on HDP-3.0.1.0 with, Hive 3.1.0 but should be portable to lower Hive versions. Suppose we have this inbound data, which might represent some inbound experiment test data: { "data" : { "receipt_time" : "2018-09-28T10:00:00.000Z", "site" : "Los Angeles", "measures" : [ { "test_id" : "C23_PV", "metrics" : [ { "val1" : [ 0.76, 0.75, 0.71 ], "temp" : [ 0, 2, 5 ], "TS" : [ 1538128801336, 1538128810408, 1538128818420 ] } ] }, { "test_id" : "HBI2_XX", "metrics" : [ { "val1" : [ 0.65, 0.71 ], "temp" : [ 1, -7], "TS" : [ 1538128828433, 1538128834541 ] } ] }] } } There are 3 nested arrays in this 1 JSON record. It is pretty printed above to get a feel for the data structure, but remember we need to feed it to Hive as 1 line per JSON only: {"data":{"receipt_time":"2018-09-28T10:00:00.000Z","site":"LosAngeles","measures":[{"test_id":"C23_PV","metrics":[{"val1":[0.76,0.75,0.71],"temp":[0,2,5],"TS":[1538128801336,1538128810408,1538128818420]}]},{"test_id":"HBI2_XX","metrics":[{"val1":[0.65,0.71],"temp":[1,-7],"TS":[1538128828433,1538128834541]}]}]}} The goal of the Hive transformations is to get to the layout as below receipt_time | site | test_id | val1 | temp | TS ------------------------------------------------------------------------------------ 2018-09-28T10:00:00.000Z | Los Angeles | C23_PV | 0.76 | 0 | 1538128801336 2018-09-28T10:00:00.000Z | Los Angeles | C23_PV | 0.75 | 2 | 1538128810408 2018-09-28T10:00:00.000Z | Los Angeles | C23_PV | 0.71 | 5 | 1538128818420 2018-09-28T10:00:00.000Z | Los Angeles | HBI2_XX | 0.65 | 1 | 1538128828433 2018-09-28T10:00:00.000Z | Los Angeles | HBI2_XX | 0.71 | -7 | 1538128834541 Note that 1 JSON record has been exploded into 5 rows (the sum of sizes of the 'metrics' array in the 'measures' array) and keys of the inner most JSON keys (val1, temp, TS) have been transposed to top level columns. So how do we go about this? First we need a Hive table overlay that understands the JSON structure: CREATE EXTERNAL TABLE IF NOT EXISTS ds.json_serde( data struct< receipt_time: STRING, site: STRING, measures: ARRAY< struct< test_id: STRING, metrics: ARRAY< struct< val1: array<DOUBLE>, temp: array<SMALLINT>, TS: array<BIGINT> > > > > > ) ROW FORMAT SERDE 'org.apache.hive.hcatalog.data.JsonSerDe' LOCATION '/user/hive/external/json_serde' TBLPROPERTIES ("transactional"="false"); It is a Hive EXTERNAL table since then it is much easier to hand it (insert) some file containing the JSON strings. To do that we create a local file that contains just the JSON one liner (without line endings, copy it from above) Upload that file ('/home/cloudbreak/hive_json/source.json' in my case) to the folder for the external table we just created: hdfs dfs -mkdir -p /user/hive/external/json_serde hdfs dfs -put /home/cloudbreak/hive_json/source.json /user/hive/external/json_serde Test the Hive table; hive> select data.site, data.measures[0].metrics[0].temp from ds.json_serde; It should return: INFO : OK +-------------+----------+ | site | temp | +-------------+----------+ | LosAngeles | [0,2,5] | +-------------+----------+ 1 row selected (0.826 seconds) 0: jdbc:hive2://spark1-e0.zmq0bv3frkfuhfsbkcz> Now we begin transforming the data SELECT b.*, a.data.receipt_time, a.data.site from ds.json_serde a LATERAL VIEW OUTER inline(a.data.measures) b; The inline function will do 2 things here: 1.Explode the json into as many rows as there are array members in a.data.measures, 2 rows in this case 2.Create a new column for each JSON key that exists on the top level of the array members, in this case 'test_id' and 'metrics' of the 'measures' array objects *You can also try to exchange 'inline(a.data.measures)' for 'explode(a.data.measures)' in the statement above to see the difference. The output should look like this: INFO : OK +------------+----------------------------------------------------+---------------------------+-------------+ | b.test_id | b.metrics | receipt_time | site | +------------+----------------------------------------------------+---------------------------+-------------+ | C23_PV | [{"val1":[0.76,0.75,0.71],"temp":[0,2,5],"ts":[1538128801336,1538128810408,1538128818420]}] | 2018-09-28T10:00:00.000Z | LosAngeles | | HBI2_XX | [{"val1":[0.65,0.71],"temp":[1,-7],"ts":[1538128828433,1538128834541]}] | 2018-09-28T10:00:00.000Z | LosAngeles | +------------+----------------------------------------------------+---------------------------+-------------+ 2 rows selected (0.594 seconds) 0: jdbc:hive2://spark1-e0.zmq0bv3frkfuhfsbkcz> Note that the 'receipt_time' and 'site' fields have been propagated (or denormalized) onto every row. That is something we wanted. Because of the nested arrays we need to take this 1 step further: SELECT c.receipt_time, c.site, c.test_id, d.* FROM (SELECT b.*, a.data.receipt_time, a.data.site from ds.json_serde a LATERAL VIEW OUTER inline(a.data.measures) b) c LATERAL VIEW OUTER inline(c.metrics) d This statement might look daunting, but if you look carefully I am just doing the very same thing but on a nested table which is exactly the same as the previous query. *You could also materialize the result of the first LATERAL query in a Hive table with a CTAS statement The result should look like this now: INFO : OK +---------------------------+-------------+------------+-------------------+----------+----------------------------------------------+ | c.receipt_time | c.site | c.test_id | d.val1 | d.temp | d.ts | +---------------------------+-------------+------------+-------------------+----------+----------------------------------------------+ | 2018-09-28T10:00:00.000Z | LosAngeles | C23_PV | [0.76,0.75,0.71] | [0,2,5] | [1538128801336,1538128810408,1538128818420] | | 2018-09-28T10:00:00.000Z | LosAngeles | HBI2_XX | [0.65,0.71] | [1,-7] | [1538128828433,1538128834541] | +---------------------------+-------------+------------+-------------------+----------+----------------------------------------------+ 2 rows selected (0.785 seconds) 0: jdbc:hive2://spark1-e0.zmq0bv3frkfuhfsbkcz> It is beginning to look a lot better, but there is 1 last problem to solve; the arrays of 'metrics' are always of equal size but we want the first member of the 'val1' array to be connected/merged with the first member of the 'temp' array etc. There is a creative way to do this: For readability I will now materialize the second query statement into a intermediary table named 'ds.json_serde_II': CREATE TABLE ds.json_serde_II AS SELECT c.receipt_time, c.site, c.test_id, d.* FROM (SELECT b.*, a.data.receipt_time, a.data.site from ds.json_serde a LATERAL VIEW OUTER inline(a.data.measures) b) c LATERAL VIEW OUTER inline(c.metrics) d * Make sure you get the same result by running 'select * from ds.json_serde_II;' From here it takes only 1 step to get to the desired end result: SELECT a.receipt_time, a.site, a.test_id, a.temp[b.pos] as temp, a.TS[b.pos] as TS, b.* from ds.json_serde_II a LATERAL VIEW OUTER posexplode(a.val1) b; It will result in: INFO : OK +---------------------------+-------------+------------+-------+----------------+--------+--------+ | a.receipt_time | a.site | a.test_id | temp | ts | b.pos | b.val | +---------------------------+-------------+------------+-------+----------------+--------+--------+ | 2018-09-28T10:00:00.000Z | LosAngeles | C23_PV | 0 | 1538128801336 | 0 | 0.76 | | 2018-09-28T10:00:00.000Z | LosAngeles | C23_PV | 2 | 1538128810408 | 1 | 0.75 | | 2018-09-28T10:00:00.000Z | LosAngeles | C23_PV | 5 | 1538128818420 | 2 | 0.71 | | 2018-09-28T10:00:00.000Z | LosAngeles | HBI2_XX | 1 | 1538128828433 | 0 | 0.65 | | 2018-09-28T10:00:00.000Z | LosAngeles | HBI2_XX | -7 | 1538128834541 | 1 | 0.71 | +---------------------------+-------------+------------+-------+----------------+--------+--------+ 5 rows selected (1.716 seconds) 0: jdbc:hive2://spark1-e0.zmq0bv3frkfuhfsbkcz> This needs some explaining: The function posexplode does the same thing as explode (creating as many rows as there are members in the array argument) but it also yields a positional number which is the zero-based index number of the array member. We can use this positional index to link to the corresponding index members of the other arrays 'temp' and 'TS' (all first members together on 1 row, all second members on next row etc. etc.). The clause a.temp[b.pos] is just walking the JSON/Hive path to the corresponding value in the other arrays. The value of b.pos is apparently known and resolved correctly because Hive will first take care of the exploding and then join the results back to the main query where b.pos is needed. Happy data processing! ... View more

I am implementing the following access pattern from Tableau (server or desktop) to Hiveserver2: Tableau Desktop MacOS + Kerberos --> Knox (topology with Kerberos/hadoop-auth) --> Hiveserver2 Kerberos I got this to work, but the only thing that is lacking is adding 'user impersonation'. What I mean by that is similar behaviour you get when using beeline and having the: ;hive.server2.proxy.user=<end-user> switch to have Ranger policies for <end-user> applied and not for the service user that is Kerberos authenticated to Hiveserver2 (that would be 'knox' in this case). So that is the caveat at the moment; all hive interactions show as user 'knox' on Ranger audits and not the <end-user>. On the Windows version of the Hortonworks Hive ODBC driver there is an input box for 'Delegation UID' which seems to be just the option I am after, but on the OsX version of the driver it is different. You can manage many options on the odbc.ini files cat /Library/hortonworks/hive/Setup/odbc.ini [ODBC] # Specify any global ODBC configuration here such as ODBC tracing. [ODBC Data Sources] Hortonworks Hive=Hortonworks Hive ODBC Driver [Hortonworks Hive] # Description: DSN Description. # This key is not necessary and is only to give a description of the data source. Description=Hortonworks Hive ODBC Driver DSN # Driver: The location where the ODBC driver is installed to. Driver=/Library/hortonworks/hive/lib/universal/libhortonworkshiveodbc.dylib # When using No Service Discovery, specify the IP address or host name of the Hive server. # When using ZooKeeper as the Service Discovery Mode, specify a comma-separated list of ZooKeeper # servers in the following format: # <zk_host1:zk_port1>,<zk_host2:zk_port2>,... HOST= # The TCP port Hive server is listening. This is not required when using ZooKeeper as the service # discovery mode as the port is specified in the HOST connection attribute. PORT= # The name of the database schema to use when a schema is not explicitly specified in a query. Schema=default # Set to 0 to when connecting directory to Hive Server 2 (No Service Discovery). # Set to 1 to do Hive Server 2 service discovery using ZooKeeper. # Note service discovery is not support when using Hive Server 1. ServiceDiscoveryMode=0 # The namespace on ZooKeeper under which Hive Server 2 znodes are added. Required only when doing # HS2 service discovery with ZooKeeper (ServiceDiscoveryMode=1). ZKNamespace= # Set to 1 if you are connecting to Hive Server 1. Set to 2 if you are connecting to Hive Server 2. HiveServerType=2 # The authentication mechanism to use for the connection. # Set to 0 for No Authentication # Set to 1 for Kerberos # Set to 2 for User Name # Set to 3 for User Name and Password # Note only No Authentication is supported when connecting to Hive Server 1. AuthMech=1 # The Thrift transport to use for the connection. # Set to 0 for Binary # Set to 1 for SASL # Set to 2 for HTTP # Note for Hive Server 1 only Binary can be used. ThriftTransport=2 # When this option is enabled (1), the driver does not transform the queries emitted by an # application, so the native query is used. # When this option is disabled (0), the driver transforms the queries emitted by an application and # converts them into an equivalent from in HiveQL. UseNativeQuery=0 # Set the UID with the user name to use to access Hive when using AuthMech 2 to 8. UID= # The following is settings used when using Kerberos authentication (AuthMech 1 and 10) # The fully qualified host name part of the of the Hive Server 2 Kerberos service principal. # For example if the service principal name of you Hive Server 2 is: # hive/myhs2.mydomain.com@EXAMPLE.COM # Then set KrbHostFQDN to myhs2.mydomain.com KrbHostFQDN=_HOST # The service name part of the of the Hive Server 2 Kerberos service principal. # For example if the service principal name of you Hive Server 2 is: # hive/myhs2.mydomain.com@EXAMPLE.COM # Then set KrbServiceName to hive KrbServiceName=hive # The realm part of the of the Hive Server 2 Kerberos service principal. # For example if the service principal name of you Hive Server 2 is: # hive/myhs2.mydomain.com@EXAMPLE.COM # Then set KrbRealm to EXAMPLE.COM KrbRealm=EDL.DEV.BASF.COM # Set to 1 to enable SSL. Set to 0 to disable. SSL=1 # Set to 1 to enable two-way SSL. Set to 0 to disable. You must enable SSL in order to # use two-way SSL. TwoWaySSL=0 # The file containing the client certificate in PEM format. This is required when using two-way SSL. ClientCert=/Users/jknulst/Documents/Customers/BASF/Knox/gateway-identity.pem # The client private key. This is used for two-way SSL authentication. ClientPrivateKey= # The password for the client private key. Password is only required for password protected # client private key. ClientPrivateKeyPassword= So there is an option # Set the UID with the user name to use to access Hive when using AuthMech 2 to 8. UID= but it states specifically that it can't be used in tandem with Kerberos auth. So, the question is ; When connecting Tableau to Hiveserver2 can you pass the desired end-user to Hiveserver2 using the HWX ODBC Hive driver to get similar impersonation like using 'hive.server2.proxy.user' on a jdbc connect string ? ... View more

I have a HDF-3.1.2.0 deploy managed by an Ambari 2.6.2.2. Now the requirement is to have Atlas extracting Nifi metadata. That Atlas preferably has to be managed by the same Ambari currently running HDF. Problem is that all docs and HCC posts seem to handle the opposite (Installing HDF on Ambari already running HDP) and not this particular use case (Installing HDP on Ambari already running HDF). So far Ambari does seems to support it, I can register HDP-2.6.5.0 as a new version: But when I click the fly out at "Install On" and choose the current cluster Ambari takes me back to the versions screen after a short while, where the HDP stack is then NOT appearing: There is no error, no warning, nowhere, not even in the ambari-server logs It this possible with Ambari 2.6.2.2 ? Am I missing a step? What is so different in this scenario (first HDF, then HDP) from installing HDF on top of HDP? I really hope that I don't need to start over completely with this Ambari, install HDP first (for Atlas) and then put HDF back on it (this would erase all my HDF settings) Any advise greatly appreciated ... View more

Hi, I am looking for a way to get only the very last row of data from a Druid cube into a Superset dashboard. Actually the data set is a time series and in a dashboard I want to present the very last state, so the row with the highest timestamp (' ts2' ). On the Druid side I made sure the data is not aggregated (by including the ts2 field as a dimension field) My Druid datasource has the following fields: So I thought if I put the query like this (granularity ALL, all fields in the NOT GROUPED BY box): it should return the atomic, non aggregated rows and if I sort by the time stamp 'ts2' I should be able to return only the last row of data: But it doesn't. Looking at the Druid query definition Superset creates out of this it makes sense: { "queryType": "timeseries", "intervals": "2018-03-20T14:43:23+00:00/2018-03-27T14:43:23+00:00", "granularity": "all", "postAggregations": [], "aggregations": [ { "type": "count", "name": "count" } ], "dataSource": "webmetricsIIts2" } None of my requested dimension columns of NOT GROUPED BY input box are in the query def. Anyone got an idea how to do this? ... View more

Hi, Just after a restart of the Zeppelin Server I ran a simple %spark note. At the time I was the only user on the Zeppelin Server. When I take a look at the footprint of this interaction in the local process list I get 3 additional processes (the one on top "12268 is the Zeppelin server itself!) : #> ps -u zeppelin -f --forest UID PID PPID C STIME TTY TIME CMD zeppelin 12268 1 0 11:33 ? 00:00:35 /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.111-1.b15.el7_2.x86_64/bin/java -Dhdp.version=2.6.2.0-205 -Dspark.executor.memor (cut off ...) zeppelin 26818 12268 0 12:53 ? 00:00:00 \_ /bin/bash /usr/hdp/current/zeppelin-server/bin/interpreter.sh -d /usr/hdp/current/zeppelin-server/interpreter/spar (cut off ...) zeppelin 26830 26818 0 12:53 ? 00:00:00 \_ /bin/bash /usr/hdp/current/zeppelin-server/bin/interpreter.sh -d /usr/hdp/current/zeppelin-server/interpreter/ (cut off ...) zeppelin 26831 26830 6 12:53 ? 00:01:09 \_ /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.111-1.b15.el7_2.x86_64/bin/java -Dhdp.version=2.6.2.0-205 -cp /etc/z (cut off ...) Although not very clear in the output above, the 4 processes have parent > child relationships as the following points out: #> ps -u zeppelin --forest PID TTY TIME CMD 12268 ? 00:00:35 java 26818 ? 00:00:00 \_ interpreter.sh 26830 ? 00:00:00 \_ interpreter.sh 26831 ? 00:01:09 \_ java Pid 12268 is the Zeppelin server itself. The last pid 26831 is the local Spark instance launched on Yarn. My actual question is about pid 26818 & 26830 which seem to be identical: #> ps aux | grep 26818 zeppelin 26818 0.0 0.0 113128 1568 ? S 12:53 0:00 /bin/bash /usr/hdp/current/zeppelin-server/bin/interpreter.sh -d /usr/hdp/current/zeppelin-server/interpreter/spark -p 33433 -l /usr/hdp/current/zeppelin-server/local-repo/2CKX8WPU1 -g spark #> ps aux | grep 26830 zeppelin 26830 0.0 0.0 113124 636 ? S 12:53 0:00 /bin/bash /usr/hdp/current/zeppelin-server/bin/interpreter.sh -d /usr/hdp/current/zeppelin-server/interpreter/spark -p 33433 -l /usr/hdp/current/zeppelin-server/local-repo/2CKX8WPU1 -g spark Pid 26830 is related to the pid registered at /var/run/zeppelin/zeppelin-interpreter-spark-zeppelin-<hostname>.pid. So I get that an interpreter instance is lauched when the %spark note is fired from the UI. But what is the meaning and function of that identical and intermediary pid 26818 ? Is it something on my environment only or is this by design? ... View more