You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by "Larry McCay (JIRA)" <ji...@apache.org> on 2017/04/06 23:21:41 UTC

[jira] [Commented] (KNOX-920) Make avatica service use default policies

    [ https://issues.apache.org/jira/browse/KNOX-920?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15959954#comment-15959954 ] 

Larry McCay commented on KNOX-920:
----------------------------------

[~Wancy] do you plan to submit a patch for this fix?

> Make avatica service use default policies
> -----------------------------------------
>
>                 Key: KNOX-920
>                 URL: https://issues.apache.org/jira/browse/KNOX-920
>             Project: Apache Knox
>          Issue Type: Bug
>    Affects Versions: 0.11.0
>            Reporter: Shi Wang
>            Assignee: Shi Wang
>             Fix For: 0.13.0
>
>
> <policies>
> <policy role="webappsec"/>
> <policy role="authentication"/>
> <policy role="rewrite"/>
> <policy role="authorization"/>
> </policies>
> is lacking the identity-assertion role, which will append "doAs" or "user.name" in the end. Either we can remove the policies and use the default ones, which include the identity-assertion filter, or add identity-assertion in the policy.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)