[HDFS-5623] NameNode: add tests for skipping ACL enforcement when permission checks are disabled, user is superuser or user is member of supergroup. - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: HDFS ACLs (HDFS-4685)
Fix Version/s: 2.4.0
Component/s: namenode
Labels:
None

Target Version/s:

HDFS ACLs (HDFS-4685)
Hadoop Flags:

Reviewed

Description

The existing permission checks are skipped under the following conditions:

dfs.permissions.enabled is set to false. (There are several exceptions stated in the documentation.)
The user is the super-user.
The user is a member of the super-user group.
Add tests verifying that ACL enforcement is also skipped for all of these cases.

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HDFS-5623.1.patch
24/Feb/14 23:12
22 kB
Chris Nauroth
HDFS-5623.2.patch
25/Feb/14 06:15
19 kB
Chris Nauroth

Activity

People

Assignee:: Chris Nauroth

Reporter:: Chris Nauroth

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 03/Dec/13 19:43

Updated:: 30/Jun/15 07:25

Resolved:: 25/Feb/14 17:06