[HADOOP-8314] HttpServer#hasAdminAccess should return false if authorization is enabled but user is not authenticated - ASF JIRA

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.1.0, 2.0.0-alpha, 3.0.0-alpha1
Fix Version/s: 1.1.0, 2.0.0-alpha
Component/s: security
Labels:
None

Hadoop Flags:

Incompatible change, Reviewed

Description

If the user is not authenticated (request.getRemoteUser() returns NULL) or there is not authentication filter configured (thus returning also NULL), hasAdminAccess should return false. Note that a filter could allow anonymous access, thus the first case.

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending

Attachments

HADOOP-8314.patch
24/Apr/12 23:23
5 kB
Alejandro Abdelnur
HADOOP-8314.patch
25/Apr/12 03:17
5 kB
Alejandro Abdelnur
HADOOP-8314_branch-1.patch
25/Apr/12 16:03
5 kB
Alejandro Abdelnur

Activity

People

Assignee:

Alejandro Abdelnur

Reporter:

Alejandro Abdelnur

Votes:

0 Vote for this issue

Watchers:

1 Start watching this issue

Dates

Created:

24/Apr/12 23:22

Updated:

12/May/16 18:22

Resolved:

26/Apr/12 20:43