Raghav Kumar Gautam created FALCON-846:
------------------------------------------
Summary: Cluster submitted by one user when deleted by another
leads to internal server error
Key: FALCON-846
URL: https://issues.apache.org/jira/browse/FALCON-846
Project: Falcon
Issue Type: Bug
Reporter: Raghav Kumar Gautam
Assignee: Venkatesh Seetharam
Cluster was submitted by hrt_qa and deleted as root. ACL did not permitted that
operation. We got internal server error which is not good.
{code}
2014-10-29 15:22:53,082 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Submitting cluster:
<?xml version="1.0" encoding="UTF-8"?><cluster xmlns="uri:falcon:cluster:0.1"
name="corp-429763eb" description="" colo="default">
<interfaces>
<interface type="readonly"
endpoint="webhdfs://ip-172-31-47-32.ec2.internal:50070" version="0.20.2"/>
<interface type="write"
endpoint="hdfs://ip-172-31-47-32.ec2.internal:8020" version="0.20.2"/>
<interface type="execute" endpoint="ip-172-31-47-32.ec2.internal:8032"
version="0.20.2"/>
<interface type="workflow"
endpoint="http://ip-172-31-47-32.ec2.internal:11000/oozie/"; version="3.1"/>
<interface type="messaging"
endpoint="tcp://ip-172-31-47-32.ec2.internal:61616?daemon=true"
version="5.1.6"/>
</interfaces>
<locations>
<location name="staging" path="/tmp/falcon-regression-staging"/>
<location name="working" path="/tmp/falcon-regression-working"/>
</locations>
<ACL owner="hrt_qa" group="users" permission="*"/>
<properties>
<property name="field1" value="value1"/>
<property name="field2" value="value2"/>
</properties>
</cluster>
(IEntityManagerHelper:275)
2014-10-29 15:22:53,083 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Url:
http://ip-172-31-47-32.ec2.internal:15000/api/entities/submit/cluster?user.name=hrt_qa
(BaseRequest:163)
2014-10-29 15:22:53,083 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Method: POST (BaseRequest:164)
2014-10-29 15:22:53,083 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Header: Name=Content-Type Value=text/xml (BaseRequest:167)
2014-10-29 15:22:53,084 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Header: Name=Cookie
Value=hadoop.auth=u=hrt_qa&p=hrt_qa&t=simple&e=1414613478996&s=geNP9gu4jiBnl6egRohy8JkQaj8=
(BaseRequest:167)
2014-10-29 15:22:54,040 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Status: HTTP/1.1 200 OK (BaseRequest:193)
2014-10-29 15:22:54,041 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Header: Name=Content-Type Value=text/xml (BaseRequest:195)
2014-10-29 15:22:54,041 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Header: Name=requestId Value=d452f438-8e00-46b4-b12b-726648511e2d
(BaseRequest:195)
2014-10-29 15:22:54,041 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Header: Name=Content-Length Value=219 (BaseRequest:195)
2014-10-29 15:22:54,041 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Header: Name=Server Value=Jetty(6.1.26.hwx) (BaseRequest:195)
Warning: org.apache.xerces.parsers.SAXParser: Property
'http://javax.xml.XMLConstants/property/accessExternalDTD' is not recognized.
Warning: org.apache.xerces.parsers.SAXParser: Property
'http://www.oracle.com/xml/jaxp/properties/entityExpansionLimit' is not
recognized.
2014-10-29 15:22:54,044 INFO - [pool-46-thread-1:othersDeleteCluster] ~ The
web service response is:
<?xml version="1.0" encoding="UTF-8"?><result>
<status>SUCCEEDED</status>
<message>falcon/default/Submit successful (cluster) corp-429763eb</message>
<requestId>falcon/default/null</requestId>
</result>
(ServiceResponse:86)
2014-10-29 15:22:54,049 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Url:
http://ip-172-31-47-32.ec2.internal:15000/api/entities/delete/cluster/corp-429763eb?user.name=root
(BaseRequest:163)
2014-10-29 15:22:54,049 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Method: DELETE (BaseRequest:164)
2014-10-29 15:22:54,049 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Header: Name=Content-Type Value=text/xml (BaseRequest:167)
2014-10-29 15:22:54,050 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Request Header: Name=Cookie
Value=hadoop.auth=u=root&p=root&t=simple&e=1414632081591&s=6prR/YWrZTq9pxKsX3QLu7ijiho=
(BaseRequest:167)
2014-10-29 15:22:54,059 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Status: HTTP/1.1 500 Internal Server Error (BaseRequest:193)
2014-10-29 15:22:54,059 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Header: Name=requestId Value=aa55b342-411b-4af0-9cc5-c63fcb33d365
(BaseRequest:195)
2014-10-29 15:22:54,059 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Header: Name=Content-Length Value=0 (BaseRequest:195)
2014-10-29 15:22:54,060 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Response Header: Name=Server Value=Jetty(6.1.26.hwx) (BaseRequest:195)
2014-10-29 15:22:54,060 WARN - [pool-46-thread-1:othersDeleteCluster] ~ The
string does not seem to be either json or xml: (Util:731)
2014-10-29 15:22:54,060 INFO - [pool-46-thread-1:othersDeleteCluster] ~ The
web service response is:
(ServiceResponse:86)
2014-10-29 15:22:54,060 INFO - [pool-46-thread-1:othersDeleteCluster] ~
Testing going to end for:
org.apache.falcon.regression.security.ClusterAclTest.othersDeleteCluster([root,
false]) FAILED (TestngListener:56)
{code}
Relevant part of falcon.application.log:
{code}
2014-10-29 15:22:54,057 INFO -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Logging in root
(CurrentUser:69)
2014-10-29 15:22:54,057 INFO -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Request from user: root,
URL=/api/entities/delete/cluster/corp-429763eb?user.name=root
(FalconAuthenticationFilter:181)
2014-10-29 15:22:54,057 INFO -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Authorizing user=root
against request=RequestParts{resource='entities', action='delete',
entityName='corp-429763eb', entityType='cluster'} (FalconAuthorizationFilter:70)
2014-10-29 15:22:54,057 INFO -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Authorizing
authenticatedUser=root, against resource=entities, action=delete, entity
name=corp-429763eb, entity type=cluster (DefaultAuthorizationProvider:125)
2014-10-29 15:22:54,057 DEBUG -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Authorizing
authenticatedUser=root against entity/instance action=delete, entity
name=corp-429763eb, entity type=cluster (DefaultAuthorizationProvider:279)
2014-10-29 15:22:54,057 INFO -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Authorizing
authenticatedUser=root, action=delete, entity=corp-429763eb, typeCLUSTER
(DefaultAuthorizationProvider:178)
2014-10-29 15:22:54,058 ERROR -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Permission denied:
authenticatedUser=root not entity owner=hrt_qa, entity=corp-429763eb,
action=delete (DefaultAuthorizationProvider:214)
2014-10-29 15:22:54,058 ERROR -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365
root:DELETE//entities/delete/cluster/corp-429763eb] ~ Action failed:
Unauthorized
Error: Permission denied: authenticatedUser=root not entity owner=hrt_qa,
entity=corp-429763eb, action=delete (FalconWebException:68)
2014-10-29 15:22:54,058 DEBUG -
[1361290055@qtp-53336067-286:aa55b342-411b-4af0-9cc5-c63fcb33d365] ~ Audit:
root/172.31.47.32 performed request
http://ip-172-31-47-32.ec2.internal:15000/api/entities/delete/cluster/corp-429763eb?user.name=root
(172.31.47.32) at time 2014-10-29T15:22Z (FalconAuditFilter:82)
{code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
