[
https://issues.apache.org/jira/browse/MAPREDUCE-1455?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Ravi Gummadi updated MAPREDUCE-1455:
------------------------------------
Release Note: Adds job-level authorization to servlets(other than history
related servlets) for accessing job related info. Deprecates
mapreduce.jobtracker.permissions.supergroup and adds the config
mapreduce.cluster.permissions.supergroup at cluster level sothat it will be
used by TaskTracker also. Authorization checks are done if authentication is
succeeded and mapreduce.cluster.job-authorization-enabled is set to true.
> Authorization for servlets
> --------------------------
>
> Key: MAPREDUCE-1455
> URL: https://issues.apache.org/jira/browse/MAPREDUCE-1455
> Project: Hadoop Map/Reduce
> Issue Type: Sub-task
> Components: jobtracker, security, tasktracker
> Reporter: Devaraj Das
> Assignee: Ravi Gummadi
> Fix For: 0.22.0
>
> Attachments: 1455.20S.2.fix.patch, 1455.20S.2.fix1.patch,
> 1455.20S.2.patch, 1455.patch, 1455.v1.patch, 1455.v2.patch, 1455.v3.patch,
> 1455.v4.1.patch, 1455.v4.2.patch, 1455.v4.patch
>
>
> This jira is about building the authorization for servlets (on top of
> MAPREDUCE-1307). That is, the JobTracker/TaskTracker runs authorization
> checks on web requests based on the configured job permissions. For e.g., if
> the job permission is 600, then no one except the authenticated user can look
> at the job details via the browser. The authenticated user in the servlet can
> be obtained using the HttpServletRequest method.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
