[
https://issues.apache.org/jira/browse/KNOX-565?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14626556#comment-14626556
]
Kevin Minder commented on KNOX-565:
-----------------------------------
[~tanping] & [~crystal_gaoyu] < First of all let me commend you on figuring out
as much as you have of the rewrite framework. Honestly, I struggle going back
now, two years later, with the nuances. Your design looks like it fits fairly
well with the original sprit of the rewrite framework design. Certainly some
form of streaming handling of the JavaScript would have been preferable but
your search (like mine) for some form of Java based streaming JavaScript parser
seems to have turned up nothing. The concern here would be that a given
JavaScript string could be used to exhaust Knox's VM heap potentially as a
denial of service attack vector. This risk is mitigated by the fact that this
type of processing would typically occur on response bodies but it is a concern
none the less.
> Supporting All the Quick Links on Ambari Dashboard to Go Through Knox
> ---------------------------------------------------------------------
>
> Key: KNOX-565
> URL: https://issues.apache.org/jira/browse/KNOX-565
> Project: Apache Knox
> Issue Type: New Feature
> Components: Server
> Affects Versions: 0.7.0
> Reporter: Tanping Wang
> Attachments: KNOX-565 - UI support design.pdf
>
>
> Today Knox supports authentication and service level authorization for rest
> APIs. We have a need to have all of the user interfaces to also go through
> Knox. So that Knox can become the single hub for all https communications
> including both UIs and rest calls.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
