Kevin Sweeney created AURORA-1187:
-------------------------------------
Summary: Create JobKey-scoped Permissions and apply to
AuroraSchedulerManager
Key: AURORA-1187
URL: https://issues.apache.org/jira/browse/AURORA-1187
Project: Aurora
Issue Type: Story
Components: Scheduler, Security
Reporter: Kevin Sweeney
https://reviews.apache.org/r/31820/ added support for coarse-grained
permissions based on the thrift API method name. Support finer-grained
permissions scoped down to the job
For example calls to against
{code}
auroraSchedulerManager.descheduleCronJob(JobKey(role='ksweeney',
environment='prod', name='download_lunch_menu'), None, None)
{code}
currently check for the {{thrift.AuroraSchedulerManager:descheduleCronJob
}} Permission when they should check for the
{{thrift.AuroraSchedulerManager:descheduleCronJob:ksweeney:prod:download_lunch_menu}}
Permission.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
