You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mesos.apache.org by "Alexander Rojas (JIRA)" <ji...@apache.org> on 2016/04/08 12:35:25 UTC

[jira] [Created] (MESOS-5153) Sandboxes contents should be protected from unauthorized users

Alexander Rojas created MESOS-5153:
--------------------------------------

             Summary: Sandboxes contents should be protected from unauthorized users
                 Key: MESOS-5153
                 URL: https://issues.apache.org/jira/browse/MESOS-5153
             Project: Mesos
          Issue Type: Bug
          Components: security, slave
            Reporter: Alexander Rojas
            Assignee: Alexander Rojas


MESOS-4956 introduced authentication support for the sandboxes. However, authentication can only go as far as to tell whether an user is known to mesos or not. An extra additional step is necessary to verify whether the known user is allowed to executed the requested operation on the sandbox (browse, read, download, debug).



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)