GitHub user Ethanlm opened a pull request:
https://github.com/apache/storm/pull/2189
add topology readonly user configuration
Problem: Listing a user in topology.users means that user can see the
topology's storm UI, view logs, but also affect the topology, kill it, restart
a worker, do profiling or heap dumps. We want to give some users access to UI
and logs but not let them impact the topology.
Solution: Add in some new configs for TOPOLOGY_UI_USERS and
TOPOLOGY_UI_GROUPS, and then split the get operations off from the others in
SimpleACLAuthorizer
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/Ethanlm/storm STORM-2615
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/storm/pull/2189.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #2189
----
commit c9a7f91f903faa1430b2a0e36e38e226063fbe55
Author: Ethan Li <ethanopensou...@gmail.com>
Date: 2017-07-06T21:21:51Z
add topology readonly user configuration
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastruct...@apache.org or file a JIRA ticket
with INFRA.
---
