You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hbase.apache.org by "Lars George (JIRA)" <ji...@apache.org> on 2016/03/11 08:18:41 UTC

[jira] [Created] (HBASE-15445) Add support for ACLs for web based UIs

Lars George created HBASE-15445:
-----------------------------------

             Summary: Add support for ACLs for web based UIs
                 Key: HBASE-15445
                 URL: https://issues.apache.org/jira/browse/HBASE-15445
             Project: HBase
          Issue Type: Bug
          Components: master, regionserver, REST, Thrift
    Affects Versions: 1.1.3, 1.0.3, 1.2.0
            Reporter: Lars George


Since 0.99 and HBASE-10336 we have our own HttpServer class that (like the counterpart in Hadoop) supports setting an ACL to allow only named users to access the web based UIs of the server processes. In secure mode we should support this as it works hand-in-hand with Kerberos authorization and the UGI class. It seems all we have to do is add a property allowing to set the ACL property as a list of users and/or groups that have access to the UIs if needed.

As an add-on, we could combine this with the {{read-only}} flag, so that some users can only access the UIs with any option to trigger, for example, splits. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)