[
https://issues.apache.org/jira/browse/STORM-410?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14129470#comment-14129470
]
Sriharsha Chintalapani commented on STORM-410:
----------------------------------------------
[~revans2] UI should already support this
https://github.com/apache/incubator-storm/blob/security/storm-core/src/clj/backtype/storm/ui/core.clj#L46
I am using nimbus.authorizer and if the nimbus.authorizer configured to be
SimpleAclAuthorizer
https://github.com/apache/incubator-storm/blob/security/storm-core/src/jvm/backtype/storm/security/auth/authorizer/SimpleACLAuthorizer.java#L52
we already have groups interface to enforce group level permission.
> (Security) add groups support to UI and logviewer
> -------------------------------------------------
>
> Key: STORM-410
> URL: https://issues.apache.org/jira/browse/STORM-410
> Project: Apache Storm (Incubating)
> Issue Type: Improvement
> Affects Versions: feature-security
> Reporter: Robert Joseph Evans
> Assignee: Raghavendra Nandagopal
> Labels: security
>
> Once STORM-347 goes in we should look at allowing topologies to grant access
> to the UI and logs by group, not just by user. This should probably involve
> adding in new configs for ui and logs groups. Updating the code that does
> checks to also check if the user is a part of these groups, and updating the
> logviewer metadata file to include the groups allowed.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
