GitHub user liu-zhaokun opened a pull request:
https://github.com/apache/storm/pull/1890
[STORM-2311]A browser which is outside the cluster cant's access storâ¦
JIRA Issue: [https://issues.apache.org/jira/browse/STORM-2311](url)
when storm cluster is in a security mode such as kerberos,We can not use a
browser which is outside the cluster to access storm ui,even if we remove the
configuration item which named ui.filter.There is a mistake like "server
500",because those methods to get cluster's info for ui can't access the
cluster which is in a security mode.
It's not necessary to limit users to get the general information when storm
cluster is in a security mode,so it's not necessary to limit a Get-Request.What
should we do is to limit the Post-Request,preventing the external users to kill
the topology,deactivate the topology and so on... We only should ensure users
can't operator the cluster with the RestApi.
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/liu-zhaokun/storm-1 master
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/storm/pull/1890.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #1890
----
commit 927a05eacf1d0b11e50e8def6dc4f7e67c1497cd
Author: liuzhaokun <[email protected]>
Date: 2017-01-20T06:29:54Z
[STORM-2311]A browser which is outside the cluster cant's access storm ui
when storm cluster in a security mode
----
---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at [email protected] or file a JIRA ticket
with INFRA.
---
