We have some mechanism in AbstractAuthorizedResourceProvider (and this class extends it) to check if get/create/delete/etc is allowed. The setRequiredGetAuthorizations() can be used to set the required role authorizations to access the resource. Can't we use that mechanism instead of checking this manually?
[ Full content available at: https://github.com/apache/ambari/pull/2198 ] This message was relayed via gitbox.apache.org for [email protected]
