hadoop-common-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Íñigo Goiri (JIRA) <j...@apache.org>
Subject [jira] [Commented] (HADOOP-12640) Code Review AccessControlList
Date Mon, 22 Oct 2018 21:30:00 GMT

    [ https://issues.apache.org/jira/browse/HADOOP-12640?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16659700#comment-16659700
] 

Íñigo Goiri commented on HADOOP-12640:
--------------------------------------

What about adding unit tests to {{buildACLFromString()}}?

> Code Review AccessControlList
> -----------------------------
>
>                 Key: HADOOP-12640
>                 URL: https://issues.apache.org/jira/browse/HADOOP-12640
>             Project: Hadoop Common
>          Issue Type: Improvement
>          Components: security
>    Affects Versions: 3.2.0
>            Reporter: BELUGA BEHR
>            Assignee: BELUGA BEHR
>            Priority: Minor
>         Attachments: AccessControlList.patch, AccessControlList.patch, HADOOP-12640.1.patch
>
>
> After some confusion of my own, in particular with "mapreduce.job.acl-view-job," I have
looked over the AccessControlList implementation and cleaned it up and clarified a few points.
> 1) I added tests to demonstrate the existing behavior of including an asterisk in either
the username or the group field, it overrides everything and allows all access.
> "user1,user2,user3 *" = all access
> "* group1,group2" = all access
> "* *" = all access
> "* " = all access
> " *" = all access
> 2) General clean-up and simplification



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org


Mime
View raw message