----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/73794/#review224526 -----------------------------------------------------------
Ship it! Ship It! - Pradeep Agrawal On April 20, 2022, 6:02 a.m., Sailaja Polavarapu wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/73794/ > ----------------------------------------------------------- > > (Updated April 20, 2022, 6:02 a.m.) > > > Review request for ranger, Mateen Mansoori, Mehul Parikh, Pradeep Agrawal, > and Ramesh Mani. > > > Bugs: RANGER-3387 > https://issues.apache.org/jira/browse/RANGER-3387 > > > Repository: ranger > > > Description > ------- > > Added extra validation for handling PUT/POST requests coming from KNOX proxy > with different CSRF header than the one set by the client. > > > Diffs > ----- > > > security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerCSRFPreventionFilter.java > e02813fec > > security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKRBAuthenticationFilter.java > 2d3308b99 > > > Diff: https://reviews.apache.org/r/73794/diff/2/ > > > Testing > ------- > > 1. Verified functionality with Knox trusted proxy on both HA and non-HA > clusters. > 2. Also verified couple of regression test cases. > > > Thanks, > > Sailaja Polavarapu > >
