[jira] Updated: (HADOOP-1298) adding user info to file

Mon, 30 Jul 2007 14:23:14 -0700 

     [ 
https://issues.apache.org/jira/browse/HADOOP-1298?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Tsz Wo (Nicholas), SZE updated HADOOP-1298:
-------------------------------------------

    Attachment: layout20070730.patch

layout20070730.patch is the updated layout.  Below are some comments:

- Naming convention: since some classes, e.g. FilePermission, have the same 
name used in java libraries.  The classes defined in hadoop begin with H, e.g. 
HFilePermission.

- Access control mechanism should be implemented with the method

boolean implies(Permission p)

defined in java.security.permission and other classes.  So we will have 
something like:

PermissionCollection filePerms = ...;  //e.g. a PosixFilePermissions

//for checking READ
HFilePermssion p = new HFilePermssion(..., PosixFileAction.READ)
if (filePerms.implies(p)) {
  ...
}

- Method calls are protected by HSignature.  Again, for simplicity, we might 
simply user id as a signature initially.


> adding user info to file
> ------------------------
>
>                 Key: HADOOP-1298
>                 URL: https://issues.apache.org/jira/browse/HADOOP-1298
>             Project: Hadoop
>          Issue Type: New Feature
>          Components: dfs, fs
>            Reporter: Kurtis Heimerl
>             Fix For: 0.15.0
>
>         Attachments: hadoop-dev-20070724-2349.patch.gz, 
> hadoop-user-munncha.patch, hadoop-user-munncha.patch, 
> hadoop-user-munncha.patch, hadoop-user-munncha.patch10, 
> hadoop-user-munncha.patch11, hadoop-user-munncha.patch12, 
> hadoop-user-munncha.patch13, hadoop-user-munncha.patch14, 
> hadoop-user-munncha.patch15, hadoop-user-munncha.patch16, 
> hadoop-user-munncha.patch17, hadoop-user-munncha.patch4, 
> hadoop-user-munncha.patch5, hadoop-user-munncha.patch6, 
> hadoop-user-munncha.patch7, hadoop-user-munncha.patch8, 
> hadoop-user-munncha.patch9, hdfs-access-control.patch.gz, layout20070730.patch
>
>
> I'm working on adding a permissions model to hadoop's DFS. The first step is 
> this change, which associates user info with files. Following this I'll 
> assoicate permissions info, then block methods based on that user info, then 
> authorization of the user info. 
> So, right now i've implemented adding user info to files. I'm looking for 
> feedback before I clean this up and make it offical. 
> I wasn't sure what release, i'm working off trunk. 

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to