You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by Mallika Gogoi <ma...@gmail.com> on 2022/02/03 10:22:52 UTC

Review Request 73828: RANGER-3604: Stop Ranger admin web UI auto redirect to login.jsp

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73828/
-----------------------------------------------------------

Review request for ranger, Dineshkumar Yadav, Kishor Gollapalliwar, Mahesh Bandal, Mateen Mansoori, Mehul Parikh, Pradeep Agrawal, and Vishal Suvagia.


Repository: ranger


Description
-------

when we put any random string after the Ranger admin web UI URL, for example
https://<ranger-hostname>:6182/phpadmin
It is redirected automatically to the normal login url. This will make false alarm for some security scanning software. Made ranger return error 404 rather than redirecting to the correct url


Diffs
-----

  security-admin/src/main/java/org/apache/ranger/security/web/authentication/RangerAuthenticationEntryPoint.java 26786b9eb 
  security-admin/src/main/resources/conf.dist/security-applicationContext.xml 3e067a61f 
  security-admin/src/main/webapp/error.jsp PRE-CREATION 


Diff: https://reviews.apache.org/r/73828/diff/1/


Testing
-------

1. mvn clean compile package install verify
2. tested the verfied the code


Thanks,

Mallika Gogoi