[ https://issues.apache.org/jira/browse/MESOS-7854?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16453760#comment-16453760 ]
Jan Schlicht commented on MESOS-7854: ------------------------------------- Closing this in favor of MESOS-8774, as that ticket is more specific. > Authorize resource calls to provider manager api > ------------------------------------------------ > > Key: MESOS-7854 > URL: https://issues.apache.org/jira/browse/MESOS-7854 > Project: Mesos > Issue Type: Improvement > Reporter: Benjamin Bannier > Priority: Critical > Labels: csi-post-mvp, mesosphere, storage > > The resource provider manager provides a function > {code} > process::Future<process::http::Response> api( > const process::http::Request& request, > const Option<process::http::authentication::Principal>& principal) const; > {code} > which is exposed e.g., as an agent endpoint. > We need to add authorization to this function in order to e.g., stop rough > callers. -- This message was sent by Atlassian JIRA (v7.6.3#76005)