You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@airflow.apache.org by "Chris McLennon (JIRA)" <ji...@apache.org> on 2019/05/01 01:00:00 UTC

[jira] [Updated] (AIRFLOW-4450) RBAC webserver does not respect permissions on /clear

     [ https://issues.apache.org/jira/browse/AIRFLOW-4450?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Chris McLennon updated AIRFLOW-4450:
------------------------------------
    Description: 
With the update to Airflow 1.10.3, we noticed that users that have permission to clear task instances are no longer able to do so from the webserver, and are receiving an "Access denied" error. They are able to clear task instances from /taskinstance, but not from /clear.

I believe this is related to the change made in AIRFLOW-4240, which had the unintended side effect of breaking the has_dag_access decorator for POST requests.

This may affect other endpoints.

  was:
With the update to Airflow 1.10.3, we noticed that users that have permission to clear task instances are no longer able to do so from the webserver, and are receiving an "Access denied" error. They are able to clear task instances from /taskinstance, but not from /clear.

This may affect other endpoints.


> RBAC webserver does not respect permissions on /clear
> -----------------------------------------------------
>
>                 Key: AIRFLOW-4450
>                 URL: https://issues.apache.org/jira/browse/AIRFLOW-4450
>             Project: Apache Airflow
>          Issue Type: Bug
>            Reporter: Chris McLennon
>            Assignee: Chris McLennon
>            Priority: Major
>
> With the update to Airflow 1.10.3, we noticed that users that have permission to clear task instances are no longer able to do so from the webserver, and are receiving an "Access denied" error. They are able to clear task instances from /taskinstance, but not from /clear.
> I believe this is related to the change made in AIRFLOW-4240, which had the unintended side effect of breaking the has_dag_access decorator for POST requests.
> This may affect other endpoints.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)