Uploaded image for project: 'Hadoop Distributed Data Store'
  1. Hadoop Distributed Data Store
  2. HDDS-3819

OzoneManager#listVolumeByUser ignores userName parameter when ACL is enabled

    XMLWordPrintableJSON

    Details

    • Target Version/s:

      Description

      When ozone.acl.enabled is set to true, the ACL check logic in OzoneManager#listVolumeByUser ignored the provided userName.

      This bug is introduced by my commit HDDS-3056, unfortunately.

      Impact

      e.g. userA won't be able to use ozone sh volume list --user userB to list userB's volumes when ACL is enabled.

      Solution

      Use userName rather than ProtobufRpcEngine.Server.getRemoteUser() for ACL check.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                smeng Siyao Meng
                Reporter:
                smeng Siyao Meng
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: