[ https://issues.apache.org/jira/browse/MAPREDUCE-1493?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12833703#action_12833703 ]
Vinod K V commented on MAPREDUCE-1493: -------------------------------------- History pages are served by the JobTracker directly off the job-history files on the DFS. To facilitate the authorization of these pages, we will need the job ACLs that are introduced by MAPREDUCE-1307 and used subsequently in MAPREDUCE-1455. Along with JobHistory files, job configuration files are also stored on DFS, so we can directly read the ACLs from conf files and use them for the sake of authorization. > Authorization for job-history pages > ----------------------------------- > > Key: MAPREDUCE-1493 > URL: https://issues.apache.org/jira/browse/MAPREDUCE-1493 > Project: Hadoop Map/Reduce > Issue Type: Sub-task > Components: jobtracker, security > Reporter: Vinod K V > Fix For: 0.22.0 > > > MAPREDUCE-1455 introduces authorization for most of the Map/Reduce jsp pages > and servlets, but left history pages. This JIRA will make sure that > authorization checks are made while accessing job-history pages also. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.