Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-9802 YARN Timeline Service v2 (post GA features)
  3. YARN-7982

Do ACLs check while retrieving entity-types per application

    XMLWordPrintableJSON

    Details

    • Type: Sub-task
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 3.3.0
    • Component/s: None
    • Labels:
      None

      Description

      REST end point /apps/$appid/entity-types retrieves all the entity-types for given application. This need to be guarded with ACL check

      
      [yarn@yarn-ats-3 ~]$ curl "http://yarn-ats-3:8198/ws/v2/timeline/apps/application_1552297011473_0002?user.name=ambari-qa1"
      {"exception":"ForbiddenException","message":"java.lang.Exception: User ambari-qa1 is not allowed to read TimelineService V2 data.","javaClassName":"org.apache.hadoop.yarn.webapp.ForbiddenException"}
      
      [yarn@yarn-ats-3 ~]$ curl "http://yarn-ats-3:8198/ws/v2/timeline/apps/application_1552297011473_0002/entity-types?user.name=ambari-qa1"
      ["YARN_APPLICATION_ATTEMPT","YARN_CONTAINER"]
      
      

        Attachments

        1. YARN-7982-004.patch
          12 kB
          Prabhu Joseph
        2. YARN-7982-003.patch
          12 kB
          Prabhu Joseph
        3. YARN-7982-002.patch
          12 kB
          Prabhu Joseph
        4. YARN-7982-001.patch
          8 kB
          Prabhu Joseph

          Issue Links

            Activity

              People

              • Assignee:
                prabhujoseph Prabhu Joseph
                Reporter:
                rohithsharma Rohith Sharma K S
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: