Details
-
Improvement
-
Status: Resolved
-
Minor
-
Resolution: Fixed
-
None
-
None
Description
Listing a user in topology.users means that user can see the topology's storm UI, view logs, but also affect the topology, kill it, restart a worker, do profiling or heap dumps. We want to give some users access to UI and logs but not let them impact the topology.
We are proposing to add in some new configs for TOPOLOGY_UI_USERS and TOPOLOGY_UI_GROUPS, and then split the get operations off from the others in SimpleACLAuthorizer
Attachments
Issue Links
- links to
