Details

    Description

      HDDS-7830 implements secret key APIs in SCMSecurityProtocol, which for now doesn't enforce authorization (any authenticated principal can call the API).

      For secret key APIs, we want to limit the access to Ozone principals only, aka, Datanode and OM. The APIs should be moved to a separate protocol to enforce authorization separately. 

      Attachments

        Issue Links

          Activity

            People

              duongnguyen Duong
              duongnguyen Duong
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: