[YARN-3855] If acl is enabled and http.authentication.type is simple, user cannot view the app page in default setup - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Patch Available
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: security
Labels:
- oct16-medium

Description

If all ACLs (admin acl, queue-admin-acls etc.) are setup properly and "http.authentication.type" is 'simple' in secure mode , user cannot view the application web page in default setup because the incoming user is always considered as "dr.who" . User also cannot pass "user.name" to indicate the incoming user name, because AuthenticationFilterInitializer is not enabled by default. This is inconvenient from user's perspective.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

YARN-3855.1.patch
25/Jun/15 23:41
6 kB
Jian He
YARN-3855.2.patch
26/Jun/15 04:26
9 kB
Jian He

Activity

People

Assignee:: Jian He

Reporter:: Jian He

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Dates

Created:: 25/Jun/15 22:05

Updated:: 27/Oct/16 18:45