Details
-
Bug
-
Status: Resolved
-
Critical
-
Resolution: Fixed
-
2.0.0
-
None
Description
If following conditions are met then config should be made non-editable on configure->services page:
Cluster is kerberized
Kerberos is ambari managed meaning not manual
Config is stated as an identity in the kerberos descriptor posted to the cluster (api/v1/clusters/c1/artifacts/kerberos_descriptor). Note that config has to be an identity to be made non-editable. Note: Other configs mentioned in the kerberos descriptor should not be made non-editable. Only configs stated under identities array should be made non-editable.
Configs made non-editable due to satisfying above condition should have their description appended with the text that "This config can be changed from Kerberos page under Admin tab by privileged users."