[
https://issues.apache.org/jira/browse/HDFS-4564?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13595942#comment-13595942
]
Daryn Sharp commented on HDFS-4564:
-----------------------------------
Per the RFC:
{quote}
10.4.2 401 Unauthorized
The request requires user authentication. [...] The client MAY repeat the
request with a suitable Authorization header field (section 14.8). If the
request already included Authorization credentials, then the 401 response
indicates that authorization has been refused for those credentials. [...]
{quote}
Authorization (in http this means authentication) was successfully for the
cited operations in the description.
{quote}
10.4.4 403 Forbidden
The server understood the request, but is refusing to fulfill it. Authorization
will not help and the request SHOULD NOT be repeated. [...]
{quote}
This is what we want.
> Webhdfs returns incorrect http response codes for denied operations
> -------------------------------------------------------------------
>
> Key: HDFS-4564
> URL: https://issues.apache.org/jira/browse/HDFS-4564
> Project: Hadoop HDFS
> Issue Type: Bug
> Components: webhdfs
> Affects Versions: 0.23.0, 2.0.0-alpha, 3.0.0
> Reporter: Daryn Sharp
>
> Webhdfs is returning 401 (Unauthorized) instead of 403 (Forbidden) when it's
> denying operations. Examples including rejecting invalid proxy user attempts
> and renew/cancel with an invalid user.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
