You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@storm.apache.org by bo...@apache.org on 2015/01/06 23:02:40 UTC
[5/7] storm git commit: Updated SECURITY.md to reflect the change to
logs.groups.
Updated SECURITY.md to reflect the change to logs.groups.
Project: http://git-wip-us.apache.org/repos/asf/storm/repo
Commit: http://git-wip-us.apache.org/repos/asf/storm/commit/231ac22b
Tree: http://git-wip-us.apache.org/repos/asf/storm/tree/231ac22b
Diff: http://git-wip-us.apache.org/repos/asf/storm/diff/231ac22b
Branch: refs/heads/master
Commit: 231ac22b7caa254d96e2647e784747067d52cd38
Parents: cdc699e
Author: Robert (Bobby) Evans <ev...@yahoo-inc.com>
Authored: Mon Dec 22 14:59:38 2014 -0600
Committer: Robert (Bobby) Evans <ev...@yahoo-inc.com>
Committed: Mon Dec 22 14:59:38 2014 -0600
----------------------------------------------------------------------
SECURITY.md | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/storm/blob/231ac22b/SECURITY.md
----------------------------------------------------------------------
diff --git a/SECURITY.md b/SECURITY.md
index a5cd264..02dfa9d 100644
--- a/SECURITY.md
+++ b/SECURITY.md
@@ -274,9 +274,9 @@ The *SimpleACLAuthorizer* plug-in needs to know who the supervisor users are, an
These are set through *nimbus.supervisor.users* and *nimbus.admins* respectively. Each can either be a full Kerberos principal name, or the name of the user with host and realm stripped off.
-The UI and Log servers have their own authorization configurations. These are set through *logs.users* and *ui.users*. These should be set to the admin users for all of the nodes in the cluster.
+The Log servers have their own authorization configurations. These are set through *logs.users* and *logs.groups*. These should be set to the admin users or groups for all of the nodes in the cluster.
-When a topology is sumbitted, the sumbitting user can specify users in this list as well. The users specified-in addition to the users in the cluster-wide setting-will be granted access to the submitted topology's details in the ui and/or to the topology's worker logs in the logviewers.
+When a topology is sumbitted, the sumbitting user can specify users in this list as well. The users and groups specified-in addition to the users in the cluster-wide setting-will be granted access to the submitted topology's worker logs in the logviewers.
### Supervisors headless User and group Setup