hadoop-hdfs-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Daryn Sharp (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HDFS-4564) Webhdfs returns incorrect http response codes for denied operations
Date Thu, 07 Mar 2013 14:54:13 GMT

    [ https://issues.apache.org/jira/browse/HDFS-4564?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13595942#comment-13595942
] 

Daryn Sharp commented on HDFS-4564:
-----------------------------------

Per the RFC:
{quote}
10.4.2 401 Unauthorized

The request requires user authentication. [...] The client MAY repeat the request with a suitable
Authorization header field (section 14.8). If the request already included Authorization credentials,
then the 401 response indicates that authorization has been refused for those credentials.
[...]
{quote}

Authorization (in http this means authentication) was successfully for the cited operations
in the description.

{quote}
10.4.4 403 Forbidden

The server understood the request, but is refusing to fulfill it. Authorization will not help
and the request SHOULD NOT be repeated. [...]
{quote}

This is what we want.
                
> Webhdfs returns incorrect http response codes for denied operations
> -------------------------------------------------------------------
>
>                 Key: HDFS-4564
>                 URL: https://issues.apache.org/jira/browse/HDFS-4564
>             Project: Hadoop HDFS
>          Issue Type: Bug
>          Components: webhdfs
>    Affects Versions: 0.23.0, 2.0.0-alpha, 3.0.0
>            Reporter: Daryn Sharp
>
> Webhdfs is returning 401 (Unauthorized) instead of 403 (Forbidden) when it's denying
operations.  Examples including rejecting invalid proxy user attempts and renew/cancel with
an invalid user.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message