[
https://issues.apache.org/jira/browse/HADOOP-10679?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14617483#comment-14617483
]
Benoy Antony commented on HADOOP-10679:
---------------------------------------
I have separated the refactoring to HADOOP-12203. Pleas review the patch.
Also opened HADOOP-12205 to addd support for HTTP Authorization based on
HADOOP-12203.
> Authorize webui access using ServiceAuthorizationManager
> --------------------------------------------------------
>
> Key: HADOOP-10679
> URL: https://issues.apache.org/jira/browse/HADOOP-10679
> Project: Hadoop Common
> Issue Type: New Feature
> Components: security
> Reporter: Benoy Antony
> Assignee: Benoy Antony
> Labels: BB2015-05-TBR
> Attachments: HADOOP-10679.patch, HADOOP-10679.patch, hadoop-10679.pdf
>
>
> Currently accessing Hadoop via RPC can be authorized using
> _ServiceAuthorizationManager_. But there is no uniform authorization of the
> HTTP access. Some of the servlets check for admin privilege.
> This creates an inconsistency of authorization between access via RPC vs
> HTTP.
> The fix is to enable authorization of the webui access also using
> _ServiceAuthorizationManager_.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
