You are viewing a plain text version of this content. The canonical link for it is here.
Posted to common-issues@hadoop.apache.org by "Andras Bokor (Jira)" <ji...@apache.org> on 2020/08/05 09:15:00 UTC
[jira] [Updated] (HADOOP-17145) Unauthenticated users are not
authorized to access this page message is misleading in HttpServer2.java
[ https://issues.apache.org/jira/browse/HADOOP-17145?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Andras Bokor updated HADOOP-17145:
----------------------------------
Attachment: HADOOP-17145.003.patch
> Unauthenticated users are not authorized to access this page message is misleading in HttpServer2.java
> ------------------------------------------------------------------------------------------------------
>
> Key: HADOOP-17145
> URL: https://issues.apache.org/jira/browse/HADOOP-17145
> Project: Hadoop Common
> Issue Type: Bug
> Reporter: Andras Bokor
> Assignee: Andras Bokor
> Priority: Major
> Attachments: HADOOP-17145.001.patch, HADOOP-17145.002.patch, HADOOP-17145.003.patch
>
>
> Recently one of the users were misled by the message "Unauthenticated users are not authorized to access this page" when the user was not an admin user.
> At that point the user is authenticated but has no admin access, so it's actually not an authentication issue but an authorization issue.
> Also, 401 as error code would be better.
> Something like "User is unauthorized to access the page" would help to users to find out what is the problem during access an http endpoint.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: common-issues-unsubscribe@hadoop.apache.org
For additional commands, e-mail: common-issues-help@hadoop.apache.org