[ https://issues.apache.org/jira/browse/YARN-5554?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Wilfred Spiegelenburg updated YARN-5554: ---------------------------------------- Attachment: YARN-5554.2.patch Patch that does the checks for the ACL on the target queue. Following checks are made: - user has modify application permission or is admin on the queue (existing check) - user has submit access or admin access on the target queue (new check) Tests have been added for the newly added check. The existing check has not got a test and is not covered by the newly added tests > MoveApplicationAcrossQueues does not check user permission on the target queue > ------------------------------------------------------------------------------ > > Key: YARN-5554 > URL: https://issues.apache.org/jira/browse/YARN-5554 > Project: Hadoop YARN > Issue Type: Bug > Components: resourcemanager > Affects Versions: 2.7.2 > Reporter: Haibo Chen > Assignee: Wilfred Spiegelenburg > Attachments: YARN-5554.2.patch > > > moveApplicationAcrossQueues operation currently does not check user > permission on the target queue. This incorrectly allows one user to move > his/her own applications to a queue that the user has no access to -- This message was sent by Atlassian JIRA (v6.3.4#6332) --------------------------------------------------------------------- To unsubscribe, e-mail: yarn-issues-unsubscr...@hadoop.apache.org For additional commands, e-mail: yarn-issues-h...@hadoop.apache.org