From 440698eb0706636ab5955518bc2bc4b2c743981f Mon Sep 17 00:00:00 2001
From: WangYuanben <48795318+YuanbenWang@users.noreply.github.com>
Date: Mon, 7 Aug 2023 20:03:23 +0800
Subject: [PATCH] HADOOP-18836. Some properties are missing from
 hadoop-policy.xml (#5922)

---
 .../src/main/conf/hadoop-policy.xml           | 50 +++++++++++++++++++
 1 file changed, 50 insertions(+)

diff --git a/hadoop-common-project/hadoop-common/src/main/conf/hadoop-policy.xml b/hadoop-common-project/hadoop-common/src/main/conf/hadoop-policy.xml
index e1640f9754..ecda924a54 100644
--- a/hadoop-common-project/hadoop-common/src/main/conf/hadoop-policy.xml
+++ b/hadoop-common-project/hadoop-common/src/main/conf/hadoop-policy.xml
@@ -63,6 +63,16 @@
     A special value of "*" means all users are allowed.</description>
   </property>
 
+  <property>
+    <name>security.datanode.lifeline.protocol.acl</name>
+    <value>*</value>
+    <description>ACL for DatanodeLifelineProtocol, which is used by a
+    DataNode to send lifeline messages to the NameNode.
+    The ACL is a comma-separated list of user and group names. The user and
+    group list is separated by a blank. For e.g. "alice,bob users,wheel".
+    A special value of "*" means all users are allowed.</description>
+  </property>
+
   <property>
     <name>security.namenode.protocol.acl</name>
     <value>*</value>
@@ -82,6 +92,16 @@
     A special value of "*" means all users are allowed.</description>
   </property>
 
+  <property>
+    <name>security.get.user.mappings.protocol.acl</name>
+    <value>*</value>
+    <description>ACL for GetUserMappingsProtocol, implemented by the NameNode
+    and Job Tracker which maps users to groups.
+    The ACL is a comma-separated list of user and group names. The user and
+    group list is separated by a blank. For e.g. "alice,bob users,wheel".
+    A special value of "*" means all users are allowed.</description>
+  </property>
+
   <property>
     <name>security.refresh.user.mappings.protocol.acl</name>
     <value>*</value>
@@ -92,6 +112,16 @@
     users are allowed.</description>
   </property>
 
+  <property>
+    <name>security.reconfiguration.protocol.acl</name>
+    <value>*</value>
+    <description>ACL for ReconfigurationProtocol, used by HDFS admin to
+    reload configuration for NameNode/DataNode without restarting them.
+    The ACL is a comma-separated list of user and group names. The user and
+    group list is separated by a blank. For e.g. "alice,bob users,wheel".
+    A special value of "*" means all users are allowed.</description>
+  </property>
+
   <property>
     <name>security.refresh.policy.protocol.acl</name>
     <value>*</value>
@@ -102,6 +132,26 @@
     A special value of "*" means all users are allowed.</description>
   </property>
 
+  <property>
+    <name>security.refresh.callqueue.protocol.acl</name>
+    <value>*</value>
+    <description>ACL for RefreshCallQueueProtocol, which is used to refresh
+    the call queue in use currently.
+    The ACL is a comma-separated list of user and group names. The user and
+    group list is separated by a blank. For e.g. "alice,bob users,wheel".
+    A special value of "*" means all users are allowed.</description>
+  </property>
+
+  <property>
+    <name>security.refresh.generic.protocol.acl</name>
+    <value>*</value>
+    <description>ACL for GenericRefreshProtocol, which is used to refresh
+    arbitrary things at runtime.
+    The ACL is a comma-separated list of user and group names. The user and
+    group list is separated by a blank. For e.g. "alice,bob users,wheel".
+    A special value of "*" means all users are allowed.</description>
+  </property>
+
   <property>
     <name>security.ha.service.protocol.acl</name>
     <value>*</value>