Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
2.4.0
Description
Protect the ClientConfig resource so that only authorized users may have read-only access the data.
Users with the following permission should have read-only access:
- CLUSTER.VIEW_CONFIGS
- SERVICE.VIEW_CONFIGS
- HOST.VIEW_CONFIGS
These permissions should be allow for the following roles:
- AMBARI.ADMINISTRATOR
- CLUSTER.ADMINISTRATOR
- CLUSTER.OPERATOR
- SERVICE.ADMINISTRATOR
- SERVICE.OPERATOR
- CLUSTER.USER
Users with no role related to the cluster may not view the data.
Example REST API entry point:
GET /api/v1/clusters/cl1/services/HDFS/components/HDFS_CLIENT?format=client_config_tar