You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@mesos.apache.org by "Adam B (JIRA)" <ji...@apache.org> on 2016/04/25 19:25:13 UTC
[jira] [Commented] (MESOS-5164) Add authorization to agent's
/monitor/statistics endpoint
[ https://issues.apache.org/jira/browse/MESOS-5164?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15256637#comment-15256637 ]
Adam B commented on MESOS-5164:
-------------------------------
Committed one patch, still working on the other.
commit 365ec5915a29721fd04572ed891cab5ed35a78bb
Author: Benjamin Bannier <be...@mesosphere.io>
Date: Mon Apr 25 03:58:58 2016 -0700
Added helper to create test agent with injected `Authorizer`.
In addition to the fully generic interface we do provide a number of
short hand functions for creating agents in tests which allow injecting
just a single component. Add one such short hand function for creating
a test agent with an injected `Authorizer` which we will use in a
subsequent patch.
Review: https://reviews.apache.org/r/46318/
> Add authorization to agent's /monitor/statistics endpoint
> ---------------------------------------------------------
>
> Key: MESOS-5164
> URL: https://issues.apache.org/jira/browse/MESOS-5164
> Project: Mesos
> Issue Type: Task
> Components: security, slave
> Reporter: Adam B
> Assignee: Benjamin Bannier
> Labels: authorization, mesosphere, security
> Fix For: 0.29.0
>
>
> Operators may want to enforce that only specific authorized users be able to view per-executor resource usage statistics. For 0.29 MVP, we can make this coarse-grained, and assume that only the operator or a operator-privileged monitoring service will be accessing the endpoint.
> For a future release, we can consider fine-grained authz that filters statistics like we plan to do for /tasks.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)