Mailing-List: contact mapreduce-issues-help@hadoop.apache.org; run by ezmlm
Precedence: bulk
Reply-To: mapreduce-issues@hadoop.apache.org
Date: Thu, 13 Oct 2011 14:42:12 +0000 (UTC)
From: "Robert Joseph Evans (Commented) (JIRA)" <jira@apache.org>
To: mapreduce-issues@hadoop.apache.org
Message-ID: 
 <581646786.9311.1318516932566.JavaMail.tomcat@hel.zones.apache.org>
In-Reply-To: 
 <24984446.50730.1313704707621.JavaMail.tomcat@hel.zones.apache.org>
Subject: [jira] [Commented] (MAPREDUCE-2858) MRv2 WebApp Security
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit


    [ https://issues.apache.org/jira/browse/MAPREDUCE-2858?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13126627#comment-13126627 ] 

Robert Joseph Evans commented on MAPREDUCE-2858:
------------------------------------------------

{quote}
bq. Is the proxy going to try and rewrite URLs so that they always pass through the proxy or is it simply going to rely on the application master to only output relative URLs?

Proxy should only allow a (configurable) whitelist of hosts to be used in absolute URLs.
{quote}

Luke I have a basic proxy working and all of the URLs that start with '/' are failing because they are absolute with respect to the machine that they are on, not absolute to all machines.  This is the URL rewriting I was curious about.  How did you solve this issue? 
                
> MRv2 WebApp Security
> --------------------
>
>                 Key: MAPREDUCE-2858
>                 URL: https://issues.apache.org/jira/browse/MAPREDUCE-2858
>             Project: Hadoop Map/Reduce
>          Issue Type: Sub-task
>          Components: applicationmaster, mrv2, security
>    Affects Versions: 0.23.0
>            Reporter: Luke Lu
>            Assignee: Luke Lu
>            Priority: Blocker
>             Fix For: 0.23.0
>
>
> In MRv2, while the system servers (ResourceManager (RM), NodeManager (NM) and NameNode (NN)) run as "trusted"
> system users, the application masters (AM) run as users who submit the application. While this offers great flexibility
> to run multiple version of mapreduce frameworks (including their UI) on the same Hadoop cluster, it has significant
> implication for the security of webapps (Please do not discuss company specific vulnerabilities here).
> Requirements:
> # Secure authentication for AM (for app/job level ACLs).
> # Webapp security should be optional via site configuration.
> # Support existing pluggable single sign on mechanisms.
> # Should not require per app/user configuration for deployment.
> # Should not require special site-wide DNS configuration for deployment.
> This the top jira for webapp security. A design doc/notes of threat-modeling and counter measures will be posted on the wiki.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira