Details
-
Type:
Bug
-
Status: Closed
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 1.1.0, 2.0.0-alpha, 3.0.0-alpha1
-
Fix Version/s: 1.1.0, 2.0.0-alpha
-
Component/s: security
-
Labels:None
-
Hadoop Flags:Incompatible change, Reviewed
Description
If the user is not authenticated (request.getRemoteUser() returns NULL) or there is not authentication filter configured (thus returning also NULL), hasAdminAccess should return false. Note that a filter could allow anonymous access, thus the first case.