You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@mesos.apache.org by "Greg Mann (JIRA)" <ji...@apache.org> on 2015/12/15 22:17:46 UTC
[jira] [Updated] (MESOS-3903) Add authorization for
'/create-volume' and '/destroy-volume' HTTP endpoints
[ https://issues.apache.org/jira/browse/MESOS-3903?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Greg Mann updated MESOS-3903:
-----------------------------
Description:
This is the fourth in a series of tickets that adds authorization support for persistent volumes.
We need to add ACL authorization for the '/create-volume' and '/destroy-volume' HTTP endpoints. In other complementary work, authorization for frameworks performing {{CREATE}} and {{DESTROY}} operations is being added by MESOS-3065.
This will consist of adding authorization calls into the HTTP endpoint code in {{src/master/http.cpp}}, as well as tests for both failed & successful calls to '/create-volume' and '/destroy-volume' with authorization. We also must ensure that the {{principal}} field of {{Resource.DiskInfo.Persistence}} is being populated correctly.
was:
We need to add ACL authorization for the '/create-volume' and '/destroy-volume' HTTP endpoints. In other complementary work, authorization for frameworks performing {{CREATE}} and {{DESTROY}} operations is being added by MESOS-3065.
This will consist of adding authorization calls into the HTTP endpoint code in {{src/master/http.cpp}}, as well as tests for both failed & successful calls to '/create-volume' and '/destroy-volume' with authorization. We also must ensure that the {{principal}} field of {{Resource.DiskInfo.Persistence}} is being populated correctly.
> Add authorization for '/create-volume' and '/destroy-volume' HTTP endpoints
> ---------------------------------------------------------------------------
>
> Key: MESOS-3903
> URL: https://issues.apache.org/jira/browse/MESOS-3903
> Project: Mesos
> Issue Type: Improvement
> Reporter: Greg Mann
> Assignee: Greg Mann
> Labels: mesosphere, persistent-volumes
>
> This is the fourth in a series of tickets that adds authorization support for persistent volumes.
> We need to add ACL authorization for the '/create-volume' and '/destroy-volume' HTTP endpoints. In other complementary work, authorization for frameworks performing {{CREATE}} and {{DESTROY}} operations is being added by MESOS-3065.
> This will consist of adding authorization calls into the HTTP endpoint code in {{src/master/http.cpp}}, as well as tests for both failed & successful calls to '/create-volume' and '/destroy-volume' with authorization. We also must ensure that the {{principal}} field of {{Resource.DiskInfo.Persistence}} is being populated correctly.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)