[HADOOP-8314] HttpServer#hasAdminAccess should return false if authorization is enabled but user is not authenticated - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.1.0, 2.0.0-alpha, 3.0.0-alpha1
Fix Version/s: 1.1.0, 2.0.0-alpha
Component/s: security
Labels:
None

Hadoop Flags:

Incompatible change, Reviewed

Description

If the user is not authenticated (request.getRemoteUser() returns NULL) or there is not authentication filter configured (thus returning also NULL), hasAdminAccess should return false. Note that a filter could allow anonymous access, thus the first case.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HADOOP-8314.patch
24/Apr/12 23:23
5 kB
Alejandro Abdelnur
HADOOP-8314.patch
25/Apr/12 03:17
5 kB
Alejandro Abdelnur
HADOOP-8314_branch-1.patch
25/Apr/12 16:03
5 kB
Alejandro Abdelnur

Activity

People

Assignee:: Alejandro Abdelnur

Reporter:: Alejandro Abdelnur

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 24/Apr/12 23:22

Updated:: 12/May/16 18:22

Resolved:: 26/Apr/12 20:43