You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@mesos.apache.org by "Jan Schlicht (JIRA)" <ji...@apache.org> on 2016/04/28 12:05:13 UTC
[jira] [Created] (MESOS-5299) Support hierarchiy based matching of
HTTP endpoint authorization requests.
Jan Schlicht created MESOS-5299:
-----------------------------------
Summary: Support hierarchiy based matching of HTTP endpoint authorization requests.
Key: MESOS-5299
URL: https://issues.apache.org/jira/browse/MESOS-5299
Project: Mesos
Issue Type: Task
Components: security
Reporter: Jan Schlicht
Fix For: 0.29.0
The current HTTP endpoint authorization (e.g. the GET_ENDPOINT_WITH_PATCH action) works by matching the request's object with entries in the ACL. This could be loosened to support hierarchies, for example a principal trying to access "/monitor/statistics" could be authorized to do so if an ACL rule exists that allows this principal to access "/monitor" (and hence all subpaths of it).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)