You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hbase.apache.org by "pragna kari (JIRA)" <ji...@apache.org> on 2017/11/10 05:09:00 UTC

[jira] [Created] (HBASE-19234) Dangerous HTTP Methods are been allowed (secure mode)

pragna kari created HBASE-19234:
-----------------------------------

             Summary: Dangerous HTTP Methods are been allowed (secure mode)
                 Key: HBASE-19234
                 URL: https://issues.apache.org/jira/browse/HBASE-19234
             Project: HBase
          Issue Type: Bug
          Components: API, hbase, REST
            Reporter: pragna kari
            Priority: Minor


While executing the REST API Curl commands in secure cluster ,

Steps to reproduce:
Try to change the HTTP methods(GET/PUT/POST) to OPTIONS/TRACE 
Execute the commad 

Actual output:
Command is getting executed and giving out the 200Ok status with the result


Expected output :
Should not accept the other methods and throw 403 error



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)