[ https://issues.apache.org/jira/browse/MESOS-7014?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Adam B updated MESOS-7014: -------------------------- Sprint: Mesosphere Sprint 54, Mesosphere Sprint 55 (was: Mesosphere Sprint 54) > Add implicit executor authorization to local authorizer > ------------------------------------------------------- > > Key: MESOS-7014 > URL: https://issues.apache.org/jira/browse/MESOS-7014 > Project: Mesos > Issue Type: Task > Components: security > Reporter: Greg Mann > Assignee: Greg Mann > Labels: authorization, executor, mesosphere, security > > The local authorizer should be updated to perform implicit authorization of > executor actions. When executors authenticate using a default executor > secret, the authorizer will receive an authorization {{Subject}} which > contains claims, but no principal. In this case, implicit authorization > should be performed. Implicit authorization rules should enforce that an > executor can perform actions on itself; i.e., subscribe as itself, send > messages as itself, launch nested containers within itself. -- This message was sent by Atlassian JIRA (v6.3.15#6346)