Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-13008

Add XFS Filter for UIs to Hadoop Common

    XMLWordPrintableJSON

Details

    • New Feature
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 2.8.0, 3.0.0-alpha1
    • security
    • None
    • Reviewed

    Description

      Cross Frame Scripting (XFS) prevention for UIs can be provided through a common servlet filter. This filter will set the X-Frame-Options HTTP header to DENY unless configured to another valid setting.

      There are a number of UIs that could just add this to their filters as well as the Yarn webapp proxy which could add it for all it's proxied UIs - if appropriate.

      Attachments

        1. HADOOP-13008-001.patch
          14 kB
          Larry McCay
        2. HADOOP-13008-002.patch
          14 kB
          Larry McCay
        3. HADOOP-13008-003.patch
          16 kB
          Larry McCay
        4. HADOOP-13008-004.patch
          24 kB
          Larry McCay

        Issue Links

          Activity

            People

              lmccay Larry McCay
              lmccay Larry McCay
              Votes:
              0 Vote for this issue
              Watchers:
              14 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: