You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@flink.apache.org by "Eron Wright (JIRA)" <ji...@apache.org> on 2016/05/18 20:42:12 UTC

[jira] [Created] (FLINK-3930) Implement Service-Level Authorization

Eron Wright  created FLINK-3930:
-----------------------------------

             Summary: Implement Service-Level Authorization
                 Key: FLINK-3930
                 URL: https://issues.apache.org/jira/browse/FLINK-3930
             Project: Flink
          Issue Type: New Feature
            Reporter: Eron Wright 


_This issue is part of a series of improvements detailed the [Secure Data Access|https://docs.google.com/document/d/1-GQB6uVOyoaXGwtqwqLV8BHDxWiMO2WnVzBoJ8oPaAs/edit?usp=sharing] design doc._

Service-level authorization is the initial authorization mechanism to ensure clients (or servers) connecting to the Flink cluster are authorized to do so.   The purpose is to prevent a cluster from being used by an unauthorized user, whether to execute jobs, disrupt cluster functionality, or gain access to secrets stored within the cluster.

Implement service-level authorization as described in the design doc.
- Introduce a shared secret cookie
- Enable Akka security cookie
- Implement data transfer authentication
- Secure the web dashboard




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)