Uploaded image for project: 'Apache Storm'
  1. Apache Storm
  2. STORM-3218

AuthorizedUserFilter should handle authorization exceptions better.

    XMLWordPrintableJSON

    Details

      Description

      Sorry I missed this before when I added back in impersonation.  The code that gets the topology conf to validate if the user is allowed to make the given REST call should not be doing impersonation because.  I tested the code as a single user, but the issue is that because the ReqContext is tied to a thread if we don't clear/clean up the impersonation code properly the old user is still in the ReqContext so when we try to get the conf we are doing it as the wrong user and get an error.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                revans2 Robert Joseph Evans
                Reporter:
                revans2 Robert Joseph Evans
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 20m
                  20m