[
https://issues.apache.org/jira/browse/MAPREDUCE-1307?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Vinod K V updated MAPREDUCE-1307:
---------------------------------
Attachment: MAPREDUCE-1307-20100210.txt
I am attaching a patch that implements my proposal.
- The authorization checks can be enabled/disabled by
"hadoop.security.authorization" and are switched off by default.
- When authorization is enabled, the default ACLs don't grant access to anyone
except the job-owner and superuser/supergroup.
- Also added tests for the APIs that need authorization - all the modification
operations described above, and for getJobCounters() and getTaskReports() on
the view-part.
> Introduce the concept of Job Permissions
> ----------------------------------------
>
> Key: MAPREDUCE-1307
> URL: https://issues.apache.org/jira/browse/MAPREDUCE-1307
> Project: Hadoop Map/Reduce
> Issue Type: Sub-task
> Components: security
> Reporter: Devaraj Das
> Assignee: Vinod K V
> Fix For: 0.22.0
>
> Attachments: 1307-early-1.patch, MAPREDUCE-1307-20100210.txt
>
>
> It would be good to define the notion of job permissions analogous to file
> permissions. Then the JobTracker can restrict who can "read" (e.g. look at
> the job page) or "modify" (e.g. kill) jobs.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
