|Table of Contents|
HiveServer2 (HS2) is a server interface that enables remote clients to execute queries against hive Hive and retrieve the results. The current thirft RPC based implementation implementation, based on Thrift RPC, is an improved version of HiveServer that and supports multi-client concurrency and authentication. It is designed to provide better support for open API clients like JDBC and ODBC.
- Thrift IDL is available at https://github.com/apache/hive/blob/trunk/service/if/TCLIService.thrift
- Thrift documentation is available at http://
Introduced in Hive version 0.11. See HIVE-2935.
Configuration properties Properties in the
hive.server2.thrift.min.worker.threads - Number – Minimum number of minimum worker threads, default 5.
Optional Environment settingsSettings
HIVE_SERVER2_THRIFT_BIND_HOST - optional tcp – Optional TCP host interface to bind to. Overrides the config configuration file setting.
$HIVE_HOME/bin/hive --service hiveserver2
HiveServer2 support supports Anonymous (no authauthentication), Kerberos, pass through LDAP and pluggable custom authentication.
hive.server2.authentication - – Authentication mode, default NONE. Options are NONE, KERBEROS, LDAP and CUSTOM.
By default HiveServer2 performs the query processing as the user who submitted the query. If this But if the following parameter is set to false, the query would will run as the user that the
hiveserver2 process runs as.
hive.server2.enable.doAs - – Impersonate the connected user, default true.
To prevent memory leak leaks in unsecure mode, disable file system caches , by setting the following params parameters to true:
fs.hdfs.impl.disable.cache - – Disable hdfs HDFS filesystem cache, default false.
Changes in HIVE-4911, which should be is available in hive Hive 0.12, enable integrity protection and confidentiality protection (beyond just the default of authentication) , for communication between hive jdbc the Hive JDBC driver and hive server2 HiveServer2. You can use the SASL QOP property to configure this.
- This is only when kerberos Kerberos is used for the HS2 client (jdbcJDBC/odbc ODBC application) authentication with HS2HiveServer2.
- hive.server2.thrift.sasl.qop in
hive-site.xmlhas to be set to one of the valid QOP values ('auth', 'auth-int' or 'auth-conf').