Uploaded image for project: 'Apache Knox'
  1. Apache Knox
  2. KNOX-2644

Topology names should be validated when uploaded via API

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 1.5.0
    • 2.1.0
    • Server
    • None

    Description

      DefaultTopologyService#deployTopology does not validate the topology's name to prevent the creation of files outside the location or intent of the API. The name could be something like ../gateway-site, which could be used to overwrite the gateway configuration.

      (e.g., KNOX_HOME/conf/topologies/../gateway-site.xml)

      Attachments

        Activity

          People

            Unassigned Unassigned
            pzampino Philip Zampino
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated: