[
https://issues.apache.org/jira/browse/HADOOP-11342?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14232420#comment-14232420
]
Andrew Wang commented on HADOOP-11342:
--------------------------------------
Thanks for finding and submitting this [~dian.fu], this is a good improvement.
The functionality looks good, just a few small comments:
* Would be good to print a message when we load a bad ACL like this, so the
user knows not to configure this
* Would also like a test for whitelist key ACLs, in addition to the default key
ACL test.
+1 pending, thanks again.
> KMS key ACL should ignore ALL operation for default key ACL and whitelist key
> ACL
> ---------------------------------------------------------------------------------
>
> Key: HADOOP-11342
> URL: https://issues.apache.org/jira/browse/HADOOP-11342
> Project: Hadoop Common
> Issue Type: Bug
> Components: kms, security
> Reporter: Dian Fu
> Assignee: Dian Fu
> Attachments: HADOOP-11342.2.patch, HADOOP-11342.3.patch,
> HADOOP-11342.patch
>
>
> KMS key ACL should ignore ALL operation for default key ACL and whitelist key
> ACL, while there is a bug in the code which causes that if
> {{default.key.acl.ALL}} is configured, it will be used.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
