[KNOX-124] Fix the OR semantics in AclAuthz - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.3.0
Component/s: Server
Labels:
None

Description

Wildcard '*' characters in the ACL definition for acl.processing.mode of OR provide inappropriate access to the protected resource. Change to effective disregard wildcard acls by denying access for them. The fact that we are ORing them will result in the desired protection.

Attachments

Activity

People

Assignee:: Larry McCay

Reporter:: Larry McCay

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 11/Sep/13 15:28

Updated:: 28/Mar/19 14:12

Resolved:: 11/Sep/13 16:42