I ran Mesos master with this script:
and ran the agent with this script:
And then ran the long-lived framework with src/long-lived-framework --master=127.0.0.1:5050 --principal=foo --secret=bar. When attempting to click on "Sandbox" links in the Mesos web UI, I see the error Framework with ID 'd2735ff3-52ac-467a-b8eb-6bd7a119ee32-0000' does not exist on agent with ID 'd2735ff3-52ac-467a-b8eb-6bd7a119ee32-S0'. (screenshot attached). Looking at Chrome devtools, I don't see any non-200 return codes in HTTP responses. Each click on "Sandbox" produces a single request to the agent's /state endpoint, which returns 200 OK.
I verified that the sandbox links work as expected when authorization is not enabled.