You are viewing a plain text version of this content. The canonical link for it is here.

Posted to notifications@accumulo.apache.org by GitBox <gi...@apache.org> on 2022/10/06 16:08:20 UTC

[GitHub] [accumulo] DomGarguilo commented on pull request #3001: WIP - Address TODOs in PermissionsIT

DomGarguilo commented on PR #3001:
URL: https://github.com/apache/accumulo/pull/3001#issuecomment-1270338186

   I marked this as WIP because there is behavior that seem incorrect to me. In the following code that I added here:
   ```java
             // assert the test user does not have permissions to obtain a delegation token
             loginAs(rootUser);
             assertFalse(root_client.securityOperations().hasSystemPermission(testUser.getPrincipal(),
                 SystemPermission.OBTAIN_DELEGATION_TOKEN));
             // login as the test user and attempt to obtain a delegation token
             loginAs(testUser);
             DelegationToken token =
                 test_user_client.securityOperations().getDelegationToken(new DelegationTokenConfig());
   ```
   
   It checks that the `testUser` does not have the permissions to obtain a delegation token, then successfully obtains a delegation token. Unless I am misunderstanding something, this does not seem like it should be happening. Can anyone confirm or deny this?


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: notifications-unsubscribe@accumulo.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org