Re: Review Request 73794: RANGER-3387: Ranger Admin Header Validation

Sailaja Polavarapu Tue, 19 Apr 2022 23:02:49 -0700

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73794/
-----------------------------------------------------------


(Updated April 20, 2022, 6:02 a.m.)


Review request for ranger, Mateen Mansoori, Mehul Parikh, Pradeep Agrawal, and 
Ramesh Mani.


Changes
-------

Added null checks as per the review comments


Bugs: RANGER-3387
    https://issues.apache.org/jira/browse/RANGER-3387


Repository: ranger


Description
-------

Added extra validation for handling PUT/POST requests coming from KNOX proxy 
with different CSRF header than the one set by the client.


Diffs (updated)
-----

  
security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerCSRFPreventionFilter.java
 e02813fec 
  
security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKRBAuthenticationFilter.java
 2d3308b99 


Diff: https://reviews.apache.org/r/73794/diff/2/

Changes: https://reviews.apache.org/r/73794/diff/1-2/


Testing
-------

1. Verified functionality with Knox trusted proxy on both HA and non-HA 
clusters.
2. Also verified couple of regression test cases.


Thanks,

Sailaja Polavarapu

Re: Review Request 73794: RANGER-3387: Ranger Admin Header Validation

Reply via email to