Balu Vellanki created FALCON-1340:
-------------------------------------
Summary: Falcon allows change of entity owner by non-super user
Key: FALCON-1340
URL: https://issues.apache.org/jira/browse/FALCON-1340
Project: Falcon
Issue Type: Bug
Components: general
Affects Versions: 0.6.1
Reporter: Balu Vellanki
Assignee: Balu Vellanki
Fix For: 0.7
HDFS does not allow changing owner of a file by normal user. Should falcon
allow the same for entities ?
Today if two users belong to same group "users" and the falcon entity ACL is
"owner=user1, group=users, permissions=*" , then user2 can update the falcon
entity and claim ownership of this entity. User2 can also change the group
from "users" to "privateGroup" and lock out user1 from taking back ownership of
entity.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
