Hue组件相关问题-持续更新

沧海寄馀生

已于 2024-12-09 09:59:07 修改

阅读量662

点赞数 5

文章标签： apache linux 网络服务器数据库

于 2024-11-05 17:40:00 首次发布

本文链接：https://blog.youkuaiyun.com/sx157559322/article/details/143567214

版权

异常信息一:

"502 Proxy Error Proxy Error The proxy server received an invalid response from an upstream server. The proxy server could not handle the request POST /desktop/api/search/entities."

原因:

对于 Hue Load Balancer 默认超时时间为:60s，业务执行insert sql超过了60秒

解决:

Cloudera Manager UI, go to Hue > Configuration ->Load Balancer Advanced Configuration Snippet (Safety Valve) for httpd.conf

增加内容:

ProxyTimeout 600

参考链接:

https://my.cloudera.com/knowledge/Hue-Load-Balancer-timeout-issue-may-happen-when-exporting?id=73358

https://docs.cloudera.com/cdp-private-cloud-base/7.1.8/troubleshooting-hue/topics/hue-502-proxy-error-lb.html

异常信息二:

Couldn't renew kerberos ticket in order to work around Kerberos 1.8.1 issue. Please check that the ticket for 'hue/mgt2.xxx.com@xxx.COM' is still renewable: $ klist -f -c /var/run/hue/hue_krb5_ccache

If the 'renew until' date is the same as the 'valid starting' date ,the ticket cannot be renewed.Please check your KDC configuration,and the ticket renewal policy(maxrenewlife) for the 'hue/mgt2.xxx.com@xxx.COM' and 'krbtgt' principals.

本次原因是因为有人更改了hosts文件:

Kerberos Ticket Renewer 实例所在节点原有hosts域名映射:

xxxxxxx mgt2.xxx.com

被修改成了

xxxxxxx mgt2.xxx.com mgt2

修改回去即可

如果不是此类原因,可以增加

modprinc -maxrenewlife 90day krbtgt/HADOOP.COM@HADOOP.COM

异常信息三:

hue ldap集成问题

test ldap 连接异常信息:

2024-04-24 14:38:12,350 - INFO - -----------------------

2024-04-24 14:38:13,045 - WARNING - <class 'ldap.PROTOCOL_ERROR'> {'info': 'unsupported extended operation', 'desc': 'Protocol error'}

2024-04-24 14:38:13,046 - INFO -

This is the URL to contact LDAP or AD.

Syntax: ldap://<server>:<port> or ldaps://<server>:<port>.

If port is not specified, 389 will be used for LDAP and 636 for LDAPS.

2024-04-24 14:38:13,046 - INFO -

This is only necessary if LDAP/AD does not support anonymous binds.

Typically LDAP supports anonymous binds by default and AD does not.

For AD, this should be a DN, cn=Administrator,cn=Users,dc=test,dc=com,

when using Search Bind Authentication and just the username, Administrator, when using NT Domain.

For LDAP, it needs to be a DN, cn=manager,dc=test,dc=com.

2024-04-24 14:38:13,046 - WARNING - hints: check bind_dn, bind_password and ldap_url

2024-04-24 14:38:13,047 - WARNING - ldap_url="ldap://pocdb.hadoop.shrcb:389"

2024-04-24 14:38:13,047 - WARNING - bind_dn="uid=admin,cn=users,cn=accounts,dc=hadoop,dc=com"

2024-04-24 14:38:13,385 - WARNING - ldapsearch -x -LLL -H ldap://pocdb.hadoop.shrcb:389 -D "uid=admin,cn=users,cn=accounts,dc=hadoop,dc=com" -w "********" -b "" -s base

2024-04-24 14:38:13,385 - WARNING - LDAP Test Command failed

解决:

高级代码段中加了 use_start_tls=false参数解决了

CM自带的use_start_tls 取消勾选没有生效