[ https://issues.apache.org/jira/browse/MESOS-5299?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Anand Mazumdar updated MESOS-5299: ---------------------------------- Summary: Support hierarchy based matching of HTTP endpoint authorization requests. (was: Support hierarchiy based matching of HTTP endpoint authorization requests.) > Support hierarchy based matching of HTTP endpoint authorization requests. > ------------------------------------------------------------------------- > > Key: MESOS-5299 > URL: https://issues.apache.org/jira/browse/MESOS-5299 > Project: Mesos > Issue Type: Task > Components: security > Reporter: Jan Schlicht > Priority: Minor > Labels: acl, authorization, mesosphere, security > > The current HTTP endpoint authorization (e.g. the GET_ENDPOINT_WITH_PATH > action) works by matching the request's object with entries in the ACL. This > could be loosened to support hierarchies, for example a principal trying to > access "/monitor/statistics" could be authorized to do so if an ACL rule > exists that allows this principal to access "/monitor" (and hence all > subpaths of it). -- This message was sent by Atlassian JIRA (v6.3.4#6332)