Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-7882

Server side proxy for UI2 log viewer

    Details

    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 3.0.0
    • Fix Version/s: None
    • Labels:
      None
    • Target Version/s:

      Description

      When viewing container logs in UI2, the log files are directly fetched through timeline server 2. Hadoop in simple security mode does not have authenticator to make sure the user is authorized to view the log. The general practice is to use knox or other security proxy to authenticate the user and reserve proxy the request to Hadoop UI to ensure the information does not leak through anonymous user. The current implementation of UI2 log viewer uses ajax code to timeline server 2. This could prevent knox or reverse proxy software from working properly with the new design. It would be good to perform server side proxy to prevent browser from side step the authentication check.

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              eyang Eric Yang
            • Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

              Dates

              • Created:
                Updated: