[
https://issues.apache.org/jira/browse/HADOOP-11099?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14136964#comment-14136964
]
Yi Liu commented on HADOOP-11099:
---------------------------------
You are right, HTTP 401 UNAUTHORIZED is for authentication failed.
Do we need to change following to UNAUTHORIZED?
{code}
} else if (throwable instanceof AuthenticationException) {
status = Response.Status.FORBIDDEN;
{code}
> KMS return HTTP UNAUTHORIZED 401 on ACL failure
> -----------------------------------------------
>
> Key: HADOOP-11099
> URL: https://issues.apache.org/jira/browse/HADOOP-11099
> Project: Hadoop Common
> Issue Type: Bug
> Components: security
> Affects Versions: 2.6.0
> Reporter: Alejandro Abdelnur
> Assignee: Alejandro Abdelnur
> Attachments: HADOOP-11099.patch
>
>
> The usual error, HTTP UNAUTHORIZED means is for authentication, not for
> authorization.
> KMS should return HTTP FORBIDDEN in case of ACL failure.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
