falcon-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Venkatesh Seetharam (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (FALCON-400) Add Authorization for Entities
Date Fri, 08 Aug 2014 15:43:13 GMT

    [ https://issues.apache.org/jira/browse/FALCON-400?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14090883#comment-14090883
] 

Venkatesh Seetharam commented on FALCON-400:
--------------------------------------------

Thanks for taking time to review [~bvellanki]. 

bq. The build failed with an error saying 
Yes, FACON-481 was committed and had to rebase.

bq. why have the following method in AbstractTestBase.java
Convenience to get first or last group in the list

bq. Unit tests in ClusterEntityParserTest.java do not cover the following methods in ClusterEntityParser.java

Good question. Validate invokes RPC calls on each service and hence is avoided in Cluster
entity.

bq. The method ClusterEntityValidationIT.testValidateLocations()
Good catch. Will add.

bq. DefaultAuthorizationProvider.authorizeEntity() does not check if the user who is listed
to a entity.getGroups has rwx permission on the Entity.
Permissions are not yet implemented here but will be in FALCON-465. 

bq. If this is not supported, I don't see a real need for having permissions as part of the
ACL. 
Its already there in Feed and hence added it so we can future proof. 

bq. HadoopClientFactoryTest.testCreateFileSystemWithUser() hardcodes username seetharam
Its a test and is passing on jenkins as well. But will remove it.

> Add Authorization for Entities
> ------------------------------
>
>                 Key: FALCON-400
>                 URL: https://issues.apache.org/jira/browse/FALCON-400
>             Project: Falcon
>          Issue Type: New Feature
>    Affects Versions: 0.5
>            Reporter: Venkatesh Seetharam
>              Labels: authorization, security
>
> FALCON-11 addresses authentication as part of security. This should address authorization
of entities. An entity can only be modified or deleted by the user who created this entity.




--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message