[jira] [Commented] (HDFS-16822) HostRestrictingAuthorizationFilter should pass through requests if they don't access WebHDFS API
[ https://issues.apache.org/jira/browse/HDFS-16822?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17624865#comment-17624865 ] ASF GitHub Bot commented on HDFS-16822: --- tasanuma merged PR #5079: URL: https://github.com/apache/hadoop/pull/5079 > HostRestrictingAuthorizationFilter should pass through requests if they don't > access WebHDFS API > > > Key: HDFS-16822 > URL: https://issues.apache.org/jira/browse/HDFS-16822 > Project: Hadoop HDFS > Issue Type: Task >Reporter: Takanobu Asanuma >Assignee: Takanobu Asanuma >Priority: Major > Labels: pull-request-available > > After HDFS-15320, HostRestrictingAuthorizationFilter returns 404 error if the > request doesn't access WebHDFS API. > With this change, the endpoints, such as /conf and /jmx are no longer > visible. This is very inconvenient for administrators. > HostRestrictingAuthorizationFilter should pass through requests if they don't > access WebHDFS API. > This issue is reported by [~hadachi]. -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org
[jira] [Commented] (HDFS-16822) HostRestrictingAuthorizationFilter should pass through requests if they don't access WebHDFS API
[ https://issues.apache.org/jira/browse/HDFS-16822?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17624863#comment-17624863 ] ASF GitHub Bot commented on HDFS-16822: --- tasanuma commented on PR #5079: URL: https://github.com/apache/hadoop/pull/5079#issuecomment-1293018122 Thanks for your reviews, @ashutoshcipher and @tomscut. I will merge it. > HostRestrictingAuthorizationFilter should pass through requests if they don't > access WebHDFS API > > > Key: HDFS-16822 > URL: https://issues.apache.org/jira/browse/HDFS-16822 > Project: Hadoop HDFS > Issue Type: Task >Reporter: Takanobu Asanuma >Assignee: Takanobu Asanuma >Priority: Major > Labels: pull-request-available > > After HDFS-15320, HostRestrictingAuthorizationFilter returns 404 error if the > request doesn't access WebHDFS API. > With this change, the endpoints, such as /conf and /jmx are no longer > visible. This is very inconvenient for administrators. > HostRestrictingAuthorizationFilter should pass through requests if they don't > access WebHDFS API. > This issue is reported by [~hadachi]. -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org
[jira] [Commented] (HDFS-16822) HostRestrictingAuthorizationFilter should pass through requests if they don't access WebHDFS API
[ https://issues.apache.org/jira/browse/HDFS-16822?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17624389#comment-17624389 ] ASF GitHub Bot commented on HDFS-16822: --- hadoop-yetus commented on PR #5079: URL: https://github.com/apache/hadoop/pull/5079#issuecomment-1291904997 :confetti_ball: **+1 overall** | Vote | Subsystem | Runtime | Logfile | Comment | |::|--:|:|::|:---:| | +0 :ok: | reexec | 0m 41s | | Docker mode activated. | _ Prechecks _ | | +1 :green_heart: | dupname | 0m 0s | | No case conflicting files found. | | +0 :ok: | codespell | 0m 0s | | codespell was not available. | | +0 :ok: | detsecrets | 0m 0s | | detect-secrets was not available. | | +1 :green_heart: | @author | 0m 0s | | The patch does not contain any @author tags. | | +1 :green_heart: | test4tests | 0m 0s | | The patch appears to include 1 new or modified test files. | _ trunk Compile Tests _ | | +1 :green_heart: | mvninstall | 39m 8s | | trunk passed | | +1 :green_heart: | compile | 1m 35s | | trunk passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04 | | +1 :green_heart: | compile | 1m 27s | | trunk passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07 | | +1 :green_heart: | checkstyle | 1m 16s | | trunk passed | | +1 :green_heart: | mvnsite | 1m 36s | | trunk passed | | +1 :green_heart: | javadoc | 1m 25s | | trunk passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04 | | +1 :green_heart: | javadoc | 1m 35s | | trunk passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07 | | +1 :green_heart: | spotbugs | 3m 45s | | trunk passed | | +1 :green_heart: | shadedclient | 23m 8s | | branch has no errors when building and testing our client artifacts. | _ Patch Compile Tests _ | | +1 :green_heart: | mvninstall | 1m 21s | | the patch passed | | +1 :green_heart: | compile | 1m 25s | | the patch passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04 | | +1 :green_heart: | javac | 1m 25s | | the patch passed | | +1 :green_heart: | compile | 1m 15s | | the patch passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07 | | +1 :green_heart: | javac | 1m 15s | | the patch passed | | +1 :green_heart: | blanks | 0m 0s | | The patch has no blanks issues. | | +1 :green_heart: | checkstyle | 1m 2s | | hadoop-hdfs-project/hadoop-hdfs: The patch generated 0 new + 13 unchanged - 1 fixed = 13 total (was 14) | | +1 :green_heart: | mvnsite | 1m 25s | | the patch passed | | +1 :green_heart: | javadoc | 0m 55s | | the patch passed with JDK Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04 | | +1 :green_heart: | javadoc | 1m 26s | | the patch passed with JDK Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07 | | +1 :green_heart: | spotbugs | 3m 23s | | the patch passed | | +1 :green_heart: | shadedclient | 22m 38s | | patch has no errors when building and testing our client artifacts. | _ Other Tests _ | | +1 :green_heart: | unit | 240m 36s | | hadoop-hdfs in the patch passed. | | +1 :green_heart: | asflicense | 1m 3s | | The patch does not generate ASF License warnings. | | | | 350m 4s | | | | Subsystem | Report/Notes | |--:|:-| | Docker | ClientAPI=1.41 ServerAPI=1.41 base: https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-5079/1/artifact/out/Dockerfile | | GITHUB PR | https://github.com/apache/hadoop/pull/5079 | | Optional Tests | dupname asflicense compile javac javadoc mvninstall mvnsite unit shadedclient spotbugs checkstyle codespell detsecrets | | uname | Linux c82275ecf8a1 4.15.0-191-generic #202-Ubuntu SMP Thu Aug 4 01:49:29 UTC 2022 x86_64 x86_64 x86_64 GNU/Linux | | Build tool | maven | | Personality | dev-support/bin/hadoop.sh | | git revision | trunk / 49e59412f1644c83346fefc8f59dc72641e68a47 | | Default Java | Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07 | | Multi-JDK versions | /usr/lib/jvm/java-11-openjdk-amd64:Ubuntu-11.0.16+8-post-Ubuntu-0ubuntu120.04 /usr/lib/jvm/java-8-openjdk-amd64:Private Build-1.8.0_342-8u342-b07-0ubuntu1~20.04-b07 | | Test Results | https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-5079/1/testReport/ | | Max. process+thread count | 3006 (vs. ulimit of 5500) | | modules | C: hadoop-hdfs-project/hadoop-hdfs U: hadoop-hdfs-project/hadoop-hdfs | | Console output | https://ci-hadoop.apache.org/job/hadoop-multibranch/job/PR-5079/1/console | | versions | git=2.25.1 maven=3.6.3 spotbugs=4.2.2 | | Powered by | Apache Yetus 0.14.0 https://yetus.apache.org |
[jira] [Commented] (HDFS-16822) HostRestrictingAuthorizationFilter should pass through requests if they don't access WebHDFS API
[ https://issues.apache.org/jira/browse/HDFS-16822?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17624200#comment-17624200 ] ASF GitHub Bot commented on HDFS-16822: --- tasanuma opened a new pull request, #5079: URL: https://github.com/apache/hadoop/pull/5079 … ### Description of PR After HDFS-15320, HostRestrictingAuthorizationFilter returns 404 error if it receives a request that doesn't access WebHDFS API. With this change, the endpoints, such as /conf and /jmx are no longer visible. This is very inconvenient for administrators. HostRestrictingAuthorizationFilter should pass through requests if they don't access WebHDFS API. ### How was this patch tested? - verify the unit test - verify it in my local cluster ### For code changes: - [x] Does the title or this PR starts with the corresponding JIRA issue id (e.g. 'HADOOP-17799. Your PR title ...')? > HostRestrictingAuthorizationFilter should pass through requests if they don't > access WebHDFS API > > > Key: HDFS-16822 > URL: https://issues.apache.org/jira/browse/HDFS-16822 > Project: Hadoop HDFS > Issue Type: Task >Reporter: Takanobu Asanuma >Assignee: Takanobu Asanuma >Priority: Major > > After HDFS-15320, HostRestrictingAuthorizationFilter returns 404 error if it > receives a request that doesn't access WebHDFS API. > With this change, the endpoints, such as /conf and /jmx are no longer > visible. This is very inconvenient for administrators. > HostRestrictingAuthorizationFilter should pass through requests if they don't > access WebHDFS API. -- This message was sent by Atlassian Jira (v8.20.10#820010) - To unsubscribe, e-mail: hdfs-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: hdfs-issues-h...@hadoop.apache.org