Uploaded image for project: 'Hadoop YARN'
  1. Hadoop YARN
  2. YARN-9617

RM UI enables viewing pages using Timeline Reader for a user who can not access the YARN config endpoint

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 3.1.1
    • Fix Version/s: None
    • Component/s: yarn-ui-v2
    • Labels:
      None

      Description

      If a user who can not access the /conf endpoint she/he will be unable to query the address of the Timeline Service Reader (yarn.timeline-service.reader.webapp.address). In this case, the user receives a "403 Unauthenticated users are not authorized to access this page" response, when trying to view pages requesting data from the Timeline Reader (i.e. Flow Activity tab). In this case the UI is falling back to the default address (localhost:8188), which eventually yields the 401 response (see attached screenshots).

       

        Attachments

        1. 2.png
          384 kB
          Balázs Szabó
        2. 1.png
          379 kB
          Balázs Szabó

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              bszabo-cloudera Balázs Szabó
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated: