[
https://issues.apache.org/jira/browse/MESOS-911?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13923006#comment-13923006
]
Benjamin Hindman commented on MESOS-911:
----------------------------------------
Will this replace the ACLs message then as well?
Overall this looks good to me. I just wonder if we need sub Subject messages in
each sub message. Can you elaborate on why you took that approach versus just
having something like:
message PUT_WWW {
optional bytes ip = 2;
optional string hostname = 3;
repeated string urls = 4;
}
> Add pluggable authorization interface
> -------------------------------------
>
> Key: MESOS-911
> URL: https://issues.apache.org/jira/browse/MESOS-911
> Project: Mesos
> Issue Type: Story
> Components: general
> Reporter: Adam B
> Assignee: Vinod Kone
> Labels: security
>
> We are investigating authorizing principals to allow them access to only a
> specific set of operations like launching tasks or using resources. In fact,
> you could imagine a world where an authenticated principal will be authorized
> to on behalf of a subset of users and roles for launching tasks and accepting
> resources respectively. This authorization information could be stored in a
> directory service like LDAP.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
