[ https://issues.apache.org/jira/browse/HADOOP-11099?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14136964#comment-14136964 ]
Yi Liu commented on HADOOP-11099: --------------------------------- You are right, HTTP 401 UNAUTHORIZED is for authentication failed. Do we need to change following to UNAUTHORIZED? {code} } else if (throwable instanceof AuthenticationException) { status = Response.Status.FORBIDDEN; {code} > KMS return HTTP UNAUTHORIZED 401 on ACL failure > ----------------------------------------------- > > Key: HADOOP-11099 > URL: https://issues.apache.org/jira/browse/HADOOP-11099 > Project: Hadoop Common > Issue Type: Bug > Components: security > Affects Versions: 2.6.0 > Reporter: Alejandro Abdelnur > Assignee: Alejandro Abdelnur > Attachments: HADOOP-11099.patch > > > The usual error, HTTP UNAUTHORIZED means is for authentication, not for > authorization. > KMS should return HTTP FORBIDDEN in case of ACL failure. -- This message was sent by Atlassian JIRA (v6.3.4#6332)