mesos-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Greg Mann (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (MESOS-3903) Add authorization for '/create-volume' and '/destroy-volume' HTTP endpoints
Date Tue, 15 Dec 2015 21:17:46 GMT

     [ https://issues.apache.org/jira/browse/MESOS-3903?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Greg Mann updated MESOS-3903:
-----------------------------
    Description: 
This is the fourth in a series of tickets that adds authorization support for persistent volumes.

We need to add ACL authorization for the '/create-volume' and '/destroy-volume' HTTP endpoints.
In other complementary work, authorization for frameworks performing {{CREATE}} and {{DESTROY}}
operations is being added by MESOS-3065.

This will consist of adding authorization calls into the HTTP endpoint code in {{src/master/http.cpp}},
as well as tests for both failed & successful calls to '/create-volume' and '/destroy-volume'
with authorization. We also must ensure that the {{principal}} field of {{Resource.DiskInfo.Persistence}}
is being populated correctly.

  was:
We need to add ACL authorization for the '/create-volume' and '/destroy-volume' HTTP endpoints.
In other complementary work, authorization for frameworks performing {{CREATE}} and {{DESTROY}}
operations is being added by MESOS-3065.

This will consist of adding authorization calls into the HTTP endpoint code in {{src/master/http.cpp}},
as well as tests for both failed & successful calls to '/create-volume' and '/destroy-volume'
with authorization. We also must ensure that the {{principal}} field of {{Resource.DiskInfo.Persistence}}
is being populated correctly.


> Add authorization for '/create-volume' and '/destroy-volume' HTTP endpoints
> ---------------------------------------------------------------------------
>
>                 Key: MESOS-3903
>                 URL: https://issues.apache.org/jira/browse/MESOS-3903
>             Project: Mesos
>          Issue Type: Improvement
>            Reporter: Greg Mann
>            Assignee: Greg Mann
>              Labels: mesosphere, persistent-volumes
>
> This is the fourth in a series of tickets that adds authorization support for persistent
volumes.
> We need to add ACL authorization for the '/create-volume' and '/destroy-volume' HTTP
endpoints. In other complementary work, authorization for frameworks performing {{CREATE}}
and {{DESTROY}} operations is being added by MESOS-3065.
> This will consist of adding authorization calls into the HTTP endpoint code in {{src/master/http.cpp}},
as well as tests for both failed & successful calls to '/create-volume' and '/destroy-volume'
with authorization. We also must ensure that the {{principal}} field of {{Resource.DiskInfo.Persistence}}
is being populated correctly.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message