The GitHub Actions job "CI" on fluss.git/add-snapshot-management-authorization has failed. Run started by GitHub user vaibhavk1992 (triggered by vaibhavk1992).
Head commit for run: 18f3bc6645580fb5f9cddf1cb21782e8b094b542 / vaibhav kumar <[email protected]> [server] Add authorization to snapshot management RPCs This commit adds CLUSTER/WRITE authorization checks for snapshot management internal RPCs as specified in issue #3250: Server Changes: - TabletService: Add authorization to notifyKvSnapshotOffset and notifyLakeTableOffset - CoordinatorService: Add authorization to commitKvSnapshot and commitLakeTableSnapshot - All methods check CLUSTER/WRITE permission before processing requests - Internal sessions automatically bypass authorization via session.isInternal() Test Coverage: - Add comprehensive test testSnapshotManagementAuthorization() - Test 1-4: Verify AuthorizationException when client lacks CLUSTER/WRITE permission - Test 5: Grant CLUSTER/WRITE permission and verify operations succeed - Test 6: Verify internal server-to-server calls bypass authorization - Tests all 4 snapshot management operations with complete authorization lifecycle These are internal server-to-server RPCs used for snapshot coordination. The authorization prevents external clients from calling internal APIs while allowing legitimate internal cluster operations to proceed. Co-Authored-By: Claude Sonnet 4.5 <[email protected]> Report URL: https://github.com/apache/fluss/actions/runs/25665755561 With regards, GitHub Actions via GitBox
