-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/18730/
-----------------------------------------------------------
(Updated March 21, 2014, 11:44 p.m.)
Review request for mesos, Adam B, Benjamin Hindman, and Niklas Nielsen.
Changes
-------
Ok. Yet Another ACL format :)
After some more brainstorming, I decided to make Action as the focus of the ACL
instead of subject or objects. The main reason behind this is that we want to
be able to easily set things like:
Any principal can run as "guest"
Some principals can run as "user1" and "user2"
No client access "/admin"
Having multiple subjects and objects per action makes this intuitive to set
without being too verbose.
Another important consideration was to find the right tradeoff between
--> Making it easy for users to set ACLs (take a look at the tests).
--> Making it easy to implement authorization (take a look at the
implementation).
Let me know what you think.
Bugs: MESOS-911
https://issues.apache.org/jira/browse/MESOS-911
Repository: mesos-git
Description
-------
See summary.
Diffs (updated)
-----
include/mesos/mesos.proto 37f8a7fcd23d467b1274c46c405b836510afbd49
src/Makefile.am 0775a0df293e945d41c7ba90fd1bbb503ae22f9e
src/authorizer/authorizer.hpp PRE-CREATION
src/tests/authorization_tests.cpp PRE-CREATION
src/tests/master_contender_detector_tests.cpp
8da7420e18c7a960b566fae13a5975857eb777ee
Diff: https://reviews.apache.org/r/18730/diff/
Testing
-------
make check
Thanks,
Vinod Kone
