Activate SPNEGO even without SSL - http signature secret file needed

deployments/hadoop-hdfs/site.pp.tmpl

@@ -118,6 +118,13 @@ class local_kerberos {
   }
 
   File['/etc/security/keytab'] -> Kerberos::Keytab <| |>
+
+  file{'/etc/security/http-auth-signature-secret':
+    content => '$http_signature_secret',
+    mode    => '0600',
+    owner   => 'root',
+    group   => 'root',
+  }
 }
 
 class local_kerberos_master {

deployments/hadoop-single/single.pp.tmpl

@@ -192,6 +192,13 @@ class local_kerberos {
   }
 
   File['/etc/security/keytab'] -> Kerberos::Keytab <| |>
+
+  file{'/etc/security/http-auth-signature-secret':
+    content => '$http_signature_secret',
+    mode    => '0600',
+    owner   => 'root',
+    group   => 'root',
+  }
 }
 
 class local_kerberos_master {

deployments/hadoop/plugin.py

@@ -25,6 +25,7 @@ class ComponentHadoopCommon:
             'realm': 'HADOOP',
             'kerberos_admin_password': config['secrets']['kerberos_admin_password'],
             'kerberos_master_password': config['secrets']['kerberos_master_password'],
+            'http_signature_secret': config['secrets']['http_signature_secret'],
             'data_dirs': data_dirs,
         }
 

deployments/hadoop/site.pp.tmpl

@@ -190,6 +190,13 @@ class local_kerberos {
   }
 
   File['/etc/security/keytab'] -> Kerberos::Keytab <| |>
+
+  file{'/etc/security/http-auth-signature-secret':
+    content => '$http_signature_secret',
+    mode    => '0600',
+    owner   => 'root',
+    group   => 'root',
+  }
 }
 
 class local_kerberos_master {