Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-14060

HTTP servlet /logs should require authentication and authorization

    Details

    • Type: Bug
    • Status: Reopened
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: 3.0.0-alpha4
    • Fix Version/s: None
    • Component/s: kms
    • Labels:
      None
    • Target Version/s:

      Description

      HADOOP-14047 makes KMS call HttpServer2#setACL. Access control works fine for /conf, /jmx, /logLevel, and /stacks, but not for /logs.

      The code in AdminAuthorizedServlet#doGet for /logs and ConfServlet#doGet for /conf are quite similar. This makes me believe that /logs should subject to the same access control as intended by the original developer.

      IMHO this could either be my misconfiguration or there is a bug somewhere in HttpServer2.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                jzhuge John Zhuge
              • Votes:
                0 Vote for this issue
                Watchers:
                12 Start watching this issue

                Dates

                • Created:
                  Updated: