Uploaded image for project: 'Hadoop HDFS'
  1. Hadoop HDFS
  2. HDFS-9711

Integrate CSRF prevention filter in WebHDFS.

    Details

    • Target Version/s:
    • Hadoop Flags:
      Reviewed
    • Release Note:
      Hide
      WebHDFS now supports options to enforce cross-site request forgery (CSRF) prevention for HTTP requests to both the NameNode and the DataNode. Please refer to the updated WebHDFS documentation for a description of this feature and further details on how to configure it.
      Show
      WebHDFS now supports options to enforce cross-site request forgery (CSRF) prevention for HTTP requests to both the NameNode and the DataNode. Please refer to the updated WebHDFS documentation for a description of this feature and further details on how to configure it.

      Description

      HADOOP-12691 introduced a filter in Hadoop Common to help REST APIs guard against cross-site request forgery attacks. This issue tracks integration of that filter in WebHDFS.

        Attachments

        1. HDFS-9711.001.patch
          42 kB
          Chris Nauroth
        2. HDFS-9711.002.patch
          42 kB
          Chris Nauroth
        3. HDFS-9711.003.patch
          45 kB
          Chris Nauroth
        4. HDFS-9711.004.patch
          47 kB
          Chris Nauroth
        5. HDFS-9711.005.patch
          48 kB
          Chris Nauroth
        6. HDFS-9711-branch-2.005.patch
          49 kB
          Chris Nauroth

          Issue Links

            Activity

              People

              • Assignee:
                cnauroth Chris Nauroth
                Reporter:
                cnauroth Chris Nauroth
              • Votes:
                0 Vote for this issue
                Watchers:
                11 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: