[YARN-8415] TimelineWebServices.getEntity should throw ForbiddenException instead of 404 when ACL checks fail - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.2.0, 3.1.1
Component/s: None
Labels:
None

Hadoop Flags:

Reviewed

Description

private TimelineEntity doGetEntity(
      String entityType,
      String entityId,
      EnumSet<Field> fields,
      UserGroupInformation callerUGI) throws YarnException, IOException {
    TimelineEntity entity = null;
    entity =
        store.getEntity(entityId, entityType, fields);
    if (entity != null) {
      addDefaultDomainIdIfAbsent(entity);
      // check ACLs
      if (!timelineACLsManager.checkAccess(
          callerUGI, ApplicationAccessType.VIEW_APP, entity)) {
          entity = null;   //Should differentiate from an entity get failure vs ACL check failure here by throwing an Exception.*
      }
    }
    return entity;
  }

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

YARN-8415.3.patch
12/Jun/18 18:01
5 kB
Suma Shivaprasad
YARN-8415.2.patch
12/Jun/18 01:41
5 kB
Suma Shivaprasad
YARN-8415.1.patch
12/Jun/18 01:05
5 kB
Suma Shivaprasad

Activity

People

Assignee:: Suma Shivaprasad

Reporter:: Sumana Sathish

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 12/Jun/18 00:50

Updated:: 02/Jul/18 23:06

Resolved:: 02/Jul/18 22:36