mesos-reviews mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Alexander Rojas <alexan...@mesosphere.io>
Subject Re: Review Request 49095: Enabled fine-grained authorization in the master's frameworks endpoint.
Date Tue, 28 Jun 2016 13:17:54 GMT

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/49095/
-----------------------------------------------------------

(Updated June 28, 2016, 3:17 p.m.)


Review request for mesos, Adam B, Joerg Schad, and Till Toenshoff.


Bugs: mesos-5704
    https://issues.apache.org/jira/browse/mesos-5704


Repository: mesos


Description
-------

Even if ACLs were defined for the actions `VIEW_FRAMEWORKS`,
`VIEW_EXECUTORS` and `VIEW_TASKS`, the data these actions were
supposed to protect, could still leaked through the master's
`/frameworks` endpoint, since it didn't enable any authorization
mechanism.


Diffs (updated)
-----

  src/master/http.cpp e089fe960779f39b3321f2ec81ab2acc17d53641 
  src/tests/master_authorization_tests.cpp 81804e0522fd6b26155732af08e33c4d0bb0a8fe 

Diff: https://reviews.apache.org/r/49095/diff/


Testing
-------

`make check`


Thanks,

Alexander Rojas


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message