[ https://issues.apache.org/jira/browse/MESOS-5707?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15350736#comment-15350736 ]
Alexander Rojas commented on MESOS-5707: ---------------------------------------- [r/49257/|https://reviews.apache.org/r/49257/]: Added documentation on coarse grain authorization for endpoints. > LocalAuthorizer should error if passed a GET_ENDPOINT ACL with an unhandled > path > -------------------------------------------------------------------------------- > > Key: MESOS-5707 > URL: https://issues.apache.org/jira/browse/MESOS-5707 > Project: Mesos > Issue Type: Task > Components: security > Reporter: Adam B > Assignee: Alexander Rojas > Priority: Critical > Labels: mesosphere, security > Fix For: 1.0.0 > > > Since GET_ENDPOINT_WITH_PATH doesn't (yet) work with any arbitrary path, we > should > a) validate --acls and error if GET_ENDPOINT_WITH_PATH has a path object that > doesn't match an endpoint that uses this authz strategy. > b) document exactly which endpoints support GET_ENDPOINT_WITH_PATH -- This message was sent by Atlassian JIRA (v6.3.4#6332)