hadoop-mapreduce-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ravi Gummadi (JIRA)" <j...@apache.org>
Subject [jira] Updated: (MAPREDUCE-1455) Authorization for servlets
Date Mon, 08 Mar 2010 10:32:27 GMT

     [ https://issues.apache.org/jira/browse/MAPREDUCE-1455?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel

Ravi Gummadi updated MAPREDUCE-1455:

    Release Note: Adds job-level authorization to servlets(other than history related servlets)
for accessing job related info. Deprecates mapreduce.jobtracker.permissions.supergroup and
adds the config mapreduce.cluster.permissions.supergroup at cluster level sothat it will be
used by TaskTracker also. Authorization checks are done if authentication is succeeded and
mapreduce.cluster.job-authorization-enabled is set to true. 

> Authorization for servlets
> --------------------------
>                 Key: MAPREDUCE-1455
>                 URL: https://issues.apache.org/jira/browse/MAPREDUCE-1455
>             Project: Hadoop Map/Reduce
>          Issue Type: Sub-task
>          Components: jobtracker, security, tasktracker
>            Reporter: Devaraj Das
>            Assignee: Ravi Gummadi
>             Fix For: 0.22.0
>         Attachments: 1455.20S.2.fix.patch, 1455.20S.2.fix1.patch, 1455.20S.2.patch, 1455.patch,
1455.v1.patch, 1455.v2.patch, 1455.v3.patch, 1455.v4.1.patch, 1455.v4.2.patch, 1455.v4.patch
> This jira is about building the authorization for servlets (on top of MAPREDUCE-1307).
That is, the JobTracker/TaskTracker runs authorization checks on web requests based on the
configured job permissions. For e.g., if the job permission is 600, then no one except the
authenticated user can look at the job details via the browser. The authenticated user in
the servlet can be obtained using the HttpServletRequest method.

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

View raw message