[
https://issues.apache.org/jira/browse/STORM-678?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Sriharsha Chintalapani updated STORM-678:
-----------------------------------------
Summary: Storm UI Spengo filter doesn't invalidate user session
immediately upon kinit as a different user (was: Storm UI Spengo filter
should provide a configurable token.validity)
> Storm UI Spengo filter doesn't invalidate user session immediately upon
> kinit as a different user
> --------------------------------------------------------------------------------------------------
>
> Key: STORM-678
> URL: https://issues.apache.org/jira/browse/STORM-678
> Project: Apache Storm
> Issue Type: Bug
> Affects Versions: 0.9.3
> Environment: CentOS 6.6 64bit
> Java jdk1.7.0_67
> Kerberos enabled
> Reporter: Manish Nema
> Assignee: Sriharsha Chintalapani
> Labels: Security, Storm, storm-security
>
> I am using HDP 2.2 which includes fixes of
> https://issues.apache.org/jira/browse/STORM-216.
> Install STORM with Nagios and Ganglia, there is no HDFS, Hadoop installed on
> the cluster, cluster is made of three nodes.
> Enable security as guided by Ambari, kerberize the cluster this covers
> everything as specified in the
> https://github.com/apache/storm/blob/security/SECURITY.md .
> Now submit job from 'test' user principal from the gateway node. Open Storm
> UI in firefox or google-chrome it shows the topology running as 'test' user.
> Now kinit with another user 'test2' refresh the UI. It still says the 'test'
> user . Even closing and re-opening firefox /chrome doesnt help. It lets
> 'test2' user kill topology of 'test' user.
> This behaviour is not observed when using storm kill command in command line
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
