Uploaded image for project: 'Ambari'
  1. Ambari
  2. AMBARI-20768

Local Ambari user with no cluster role must not be able to access Logsearch UI

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • trunk, 2.5.0
    • 2.5.1
    • logsearch
    • None

    Description

      A local Ambari user with no cluster roles assigned to it can successfully log into the Logsearch UI.

      Logsearch service exercises restriction on who can access its UI using a property "logsearch.roles.allowed". This property is a comma-separated list of roles to be allowed access to Logsearch UI. This defect deals with the following issue:
      1. If Logsearch service requires that only certain roles be allowed to access its UI, then a local Ambari user with no roles must not be allowed to access the UI.

      DESIRED BEHAVIOR:
      =================
      1. A local user with no role assigned to it, must not be able to access Logsearch UI.

      Note: The description has been updated by removing the aspect of correcting the behavior for Ambari Administrator role for the Logsearch UI.

      Attachments

        1. AMBARI-20768_branch-2.5_updated.patch
          1 kB
          Keta Patel
        2. AMBARI-20768_branch-2.5.0.patch
          2 kB
          Keta Patel
        3. all_tests_successful.png
          25 kB
          Keta Patel

        Issue Links

          Activity

            People

              patelket@us.ibm.com Keta Patel
              patelket@us.ibm.com Keta Patel
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: