----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/73794/#review224154 -----------------------------------------------------------
security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerCSRFPreventionFilter.java Line 181 (original), 189 (patched) <https://reviews.apache.org/r/73794/#comment313081> Can this httpRequest.getAttribute("spnegoEnabled") be null? - Ramesh Mani On Jan. 8, 2022, 12:55 a.m., Sailaja Polavarapu wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/73794/ > ----------------------------------------------------------- > > (Updated Jan. 8, 2022, 12:55 a.m.) > > > Review request for ranger, Mateen Mansoori, Mehul Parikh, Pradeep Agrawal, > and Ramesh Mani. > > > Bugs: RANGER-3387 > https://issues.apache.org/jira/browse/RANGER-3387 > > > Repository: ranger > > > Description > ------- > > Added extra validation for handling PUT/POST requests coming from KNOX proxy > with different CSRF header than the one set by the client. > > > Diffs > ----- > > > security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerCSRFPreventionFilter.java > 254f225d4 > > security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKRBAuthenticationFilter.java > 2d3308b99 > > > Diff: https://reviews.apache.org/r/73794/diff/1/ > > > Testing > ------- > > 1. Verified functionality with Knox trusted proxy on both HA and non-HA > clusters. > 2. Also verified couple of regression test cases. > > > Thanks, > > Sailaja Polavarapu > >
