[jira] [Commented] (AMBARI-14298) Change authorization resource Id to be adminresource id

[Hudson (JIRA)]

    [ 
https://issues.apache.org/jira/browse/AMBARI-14298?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15052210#comment-15052210
 ] 

Hudson commented on AMBARI-14298:
---------------------------------

ABORTED: Integrated in Ambari-trunk-Commit #4011 (See 
[https://builds.apache.org/job/Ambari-trunk-Commit/4011/])
AMBARI-14298. Change authorization resource Id to be adminresource id (rlevas: 
[http://git-wip-us.apache.org/repos/asf?p=ambari.git&a=commit&h=f790baac485ef60bc3fde92b6c558f8d4af97de8])
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/UserResourceProviderTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/internal/ComponentResourceProvider.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/internal/RepositoryVersionResourceProvider.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/RepositoryVersionResourceProviderTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/GroupResourceProviderTest.java
* ambari-server/src/main/java/org/apache/ambari/server/state/Cluster.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/AmbariManagementControllerImpl.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/ActiveWidgetLayoutResourceProviderTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/api/services/BaseRequest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/MemberResourceProviderTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/security/authorization/AuthorizationHelper.java
* ambari-server/src/main/java/org/apache/ambari/server/view/ViewRegistry.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/internal/HostComponentResourceProvider.java
* 
ambari-server/src/test/java/org/apache/ambari/server/view/ViewRegistryTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/internal/RequestResourceProvider.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/CompatibleRepositoryVersionResourceProviderTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/HostResourceProviderTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/security/TestAuthenticationFactory.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/UserPrivilegeResourceProviderTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/internal/AbstractControllerResourceProvider.java
* 
ambari-server/src/main/java/org/apache/ambari/server/state/cluster/ClusterImpl.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/AmbariPrivilegeResourceProviderTest.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/internal/ServiceResourceProvider.java
* 
ambari-server/src/main/java/org/apache/ambari/server/controller/internal/HostResourceProvider.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/CredentialResourceProviderTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/ClusterPrivilegeResourceProviderTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/RequestResourceProviderTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/internal/UserAuthorizationResourceProviderTest.java
* 
ambari-server/src/test/java/org/apache/ambari/server/controller/AmbariManagementControllerImplTest.java


> Change authorization resource Id to be adminresource id
> -------------------------------------------------------
>
>                 Key: AMBARI-14298
>                 URL: https://issues.apache.org/jira/browse/AMBARI-14298
>             Project: Ambari
>          Issue Type: Bug
>          Components: ambari-server
>    Affects Versions: 2.3.0
>            Reporter: Robert Levas
>            Assignee: Robert Levas
>            Priority: Critical
>              Labels: rbac
>             Fix For: 2.3.0
>
>         Attachments: AMBARI-14298_trunk_01.patch, 
> AMBARI-14298_trunk_02.patch, AMBARI-14298_trunk_03.patch
>
>
> The RBAC changes attempt to perform authorization checks on resource-specific 
> identifiers. This is not the intended use of the authorization (admin*/auth*) 
> tables as the resource's adminresource id is to be looked up and an 
> authorization check is to be performed on that. 



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)