Details
-
Epic
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
Authorize operator endpoints
Description
We've authorized many endpoints in our work on MESOS-4843 and MESOS-5150, but we need to tie it all together into a cohesive story and document the authorization model/strategy. This epic will collect issues to round out the Mesos 1.0 authorization story.
Attachments
Attachments
Issues in epic
|
MESOS-5704 | Fine-grained authorization on /frameworks | Resolved | Alexander Rojas | ||
|
MESOS-5705 | ZK credential is exposed in /flags and /state | Resolved | Alexander Rojas | ||
|
MESOS-5706 | GET_ENDPOINT_WITH_PATH authz doesn't make sense for /flags | Resolved | Alexander Rojas | ||
|
MESOS-5707 | LocalAuthorizer should error if passed a GET_ENDPOINT ACL with an unhandled path | Resolved | Alexander Rojas | ||
|
MESOS-5708 | Add authz to /files/debug | Resolved | Abhishek Dasgupta | ||
|
MESOS-5709 | Authorization for /roles | Resolved | Jörg Schad | ||
|
MESOS-5711 | Update AUTHORIZATION strings in endpoint help | Resolved | Jörg Schad | ||
|
MESOS-5712 | Document exactly what is handled by GET_ENDPOINTS_WITH_PATH acl | Resolved | Alexander Rojas | ||
|
MESOS-5757 | Authorize orphaned tasks | Resolved | Jörg Schad |
MESOS-5703
Authorize operator endpoints
false
MESOS-5703
Authorize operator endpoints