[ https://issues.apache.org/jira/browse/HADOOP-10679?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14058337#comment-14058337 ]
Hadoop QA commented on HADOOP-10679: ------------------------------------ {color:red}-1 overall{color}. Here are the results of testing the latest attachment http://issues.apache.org/jira/secure/attachment/12655139/HADOOP-10679.patch against trunk revision . {color:green}+1 @author{color}. The patch does not contain any @author tags. {color:green}+1 tests included{color}. The patch appears to include 4 new or modified test files. {color:green}+1 javac{color}. The applied patch does not increase the total number of javac compiler warnings. {color:green}+1 javadoc{color}. There were no new javadoc warning messages. {color:green}+1 eclipse:eclipse{color}. The patch built with eclipse:eclipse. {color:green}+1 findbugs{color}. The patch does not introduce any new Findbugs (version 2.0.3) warnings. {color:green}+1 release audit{color}. The applied patch does not increase the total number of release audit warnings. {color:red}-1 core tests{color}. The patch failed these unit tests in hadoop-common-project/hadoop-common hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-resourcemanager: org.apache.hadoop.fs.TestSymlinkLocalFSFileContext org.apache.hadoop.ipc.TestIPC org.apache.hadoop.fs.TestSymlinkLocalFSFileSystem {color:green}+1 contrib tests{color}. The patch passed contrib unit tests. Test results: https://builds.apache.org/job/PreCommit-HADOOP-Build/4249//testReport/ Console output: https://builds.apache.org/job/PreCommit-HADOOP-Build/4249//console This message is automatically generated. > Authorize webui access using ServiceAuthorizationManager > -------------------------------------------------------- > > Key: HADOOP-10679 > URL: https://issues.apache.org/jira/browse/HADOOP-10679 > Project: Hadoop Common > Issue Type: Sub-task > Components: security > Reporter: Benoy Antony > Assignee: Benoy Antony > Attachments: HADOOP-10679.patch > > > Currently accessing Hadoop via RPC can be authorized using > _ServiceAuthorizationManager_. But there is no uniform authorization of the > HTTP access. Some of the servlets check for admin privilege. > This creates an inconsistency of authorization between access via RPC vs > HTTP. > The fix is to enable authorization of the webui access also using > _ServiceAuthorizationManager_. -- This message was sent by Atlassian JIRA (v6.2#6252)