[
https://issues.apache.org/jira/browse/MAPREDUCE-3103?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13140729#comment-13140729
]
Robert Joseph Evans commented on MAPREDUCE-3103:
------------------------------------------------
The patch appears the check the ACLs correctly, but like other error handling
in the WebApps it is not stopping the rest of the page from being rendered. So
even thought the result is being set as FORBIDDEN the rest of the code ignores
it and goes on to render the rest of the page and overwrite the result. In the
short term I would say that you want to throw a RuntimeException inside
accessDenied. In the long term we need to create an accessDenied exception,
along with several others and have the framework handle them correctly, similar
to how Jersey handles it.
> Implement Job ACLs for MRAppMaster
> ----------------------------------
>
> Key: MAPREDUCE-3103
> URL: https://issues.apache.org/jira/browse/MAPREDUCE-3103
> Project: Hadoop Map/Reduce
> Issue Type: Sub-task
> Components: mrv2, security
> Reporter: Vinod Kumar Vavilapalli
> Assignee: Mahadev konar
> Priority: Blocker
> Fix For: 0.23.0
>
> Attachments: MAPREDUCE-3103.patch
>
>
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
