Phil Zampino created KNOX-1322:

             Summary: Support configuration property to forcibly treat 
topologies as read-only
                 Key: KNOX-1322
             Project: Apache Knox
          Issue Type: Bug
          Components: AdminUI, Server
    Affects Versions: 1.1.0
            Reporter: Phil Zampino
            Assignee: Phil Zampino
             Fix For: 1.1.0

Define a property in gateway-site.xml to support the specification of a list of 
one or more topology names. These names represent well-known topologies which 
should be treated as read-only.

The Admin API for getting a topology should reference this property, and for 
matching topologies, force the generated element value to be true.

This has the side-effect of making these topologies read-only in the Admin UI.

This can be used when Knox is managed by Ambari, to prevent admins from 
modifying Ambari-managed topologies (e.g., admin.xml, default.xml, etc...) via 
the Knox Admin UI. If this were permitted, then changes made using the Admin UI 
could be overwritten by Ambari at some subsequent point, which is probably not 
what an admin would expect.

This message was sent by Atlassian JIRA

Reply via email to