You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ambari.apache.org by "Hadoop QA (JIRA)" <ji...@apache.org> on 2014/10/01 23:48:34 UTC
[jira] [Commented] (AMBARI-7598) Views: the "properties" object
should only be accessible from REST API if AMBARI.ADMIN
[ https://issues.apache.org/jira/browse/AMBARI-7598?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14155615#comment-14155615 ]
Hadoop QA commented on AMBARI-7598:
-----------------------------------
{color:red}-1 overall{color}. Here are the results of testing the latest attachment
http://issues.apache.org/jira/secure/attachment/12672417/AMBARI-7598.patch
against trunk revision .
{color:red}-1 patch{color}. The patch command could not apply the patch.
Console output: https://builds.apache.org/job/Ambari-trunk-test-patch/64//console
This message is automatically generated.
> Views: the "properties" object should only be accessible from REST API if AMBARI.ADMIN
> --------------------------------------------------------------------------------------
>
> Key: AMBARI-7598
> URL: https://issues.apache.org/jira/browse/AMBARI-7598
> Project: Ambari
> Issue Type: Task
> Reporter: Tom Beerbower
> Assignee: Tom Beerbower
> Fix For: 1.7.0
>
> Attachments: AMBARI-7598.patch
>
>
> /api/v1/views/FILES/versions/0.1.0/instances/FILES_1
> Configuration properties for a view instance should only be accessible from the Views REST API if you are an AMBARI.ADMIN. This protects view instance config props info from regular users of a view. If a view client-side happens to need access to these properties for some reason, they should implement a server-side resource in their view that exposes this information.
> {code}
> "properties" : {
> "dataworker.defaultFs" : "webhdfs://c6401.ambari.apache.org:50070",
> "dataworker.username" : null
> }
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)