Uploaded image for project: 'Hadoop HDFS'
  1. Hadoop HDFS
  2. HDFS-4685 Implementation of ACLs in HDFS
  3. HDFS-5623

NameNode: add tests for skipping ACL enforcement when permission checks are disabled, user is superuser or user is member of supergroup.

VotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • HDFS ACLs (HDFS-4685)
    • 2.4.0
    • namenode
    • None

    Description

      The existing permission checks are skipped under the following conditions:

      • dfs.permissions.enabled is set to false. (There are several exceptions stated in the documentation.)
      • The user is the super-user.
      • The user is a member of the super-user group.
        Add tests verifying that ACL enforcement is also skipped for all of these cases.

      Attachments

        1. HDFS-5623.2.patch
          19 kB
          Chris Nauroth
        2. HDFS-5623.1.patch
          22 kB
          Chris Nauroth

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            cnauroth Chris Nauroth
            cnauroth Chris Nauroth
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment