ambari-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Mahadev konar (JIRA)" <>
Subject [jira] [Commented] (AMBARI-2283) SecurityFilter does not allow hostnames with non-alphabetic characters
Date Thu, 06 Jun 2013 06:46:20 GMT


Mahadev konar commented on AMBARI-2283:

[~edrevo] one minor thing, sorry abt the multiple iteration. I think we should just get rid

LOG.debug("OK, request can go on");

and also make the following:

LOG.debug("OK, request can go on because it is using the safe port");

More useful like:

LOG.debug("Request can continue on secure port " + serReq.getLocalPort());

What do you think? 
> SecurityFilter does not allow hostnames with non-alphabetic characters
> ----------------------------------------------------------------------
>                 Key: AMBARI-2283
>                 URL:
>             Project: Ambari
>          Issue Type: Bug
>    Affects Versions: 1.3.0
>            Reporter: Ximo Guanter
>            Assignee: Ximo Guanter
>             Fix For: 1.3.0
>         Attachments: 1.patch, 2.patch
> The class has a very strict pattern matching which fails with hostnames
that contain digits or hyphens. It should also be checking explicitly any connections that
don't use the two-way authentication, instead of only checking those using the AGENT_ONE_WAY_AUTH

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message