[
https://issues.apache.org/jira/browse/FLINK-21640?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17298764#comment-17298764
]
Bo Cui commented on FLINK-21640:
--------------------------------
in secure env, multiple users submit jobs on yarn at the smae time. and all
jobs will create znodes.
if root znode does not exist, the root is created by CuratorFramework. but
CuratorFramework sets the current user(ACL is 31 and sasl) to the root znode.
and then other jobs submitted by other users do not have the permission to
access the root znode.
> Job fails to be submitted in tenant scenario
> --------------------------------------------
>
> Key: FLINK-21640
> URL: https://issues.apache.org/jira/browse/FLINK-21640
> Project: Flink
> Issue Type: Bug
> Affects Versions: 1.12.2, 1.13.0
> Reporter: Bo Cui
> Priority: Major
> Labels: pull-request-available
> Attachments: image-2021-03-06-09-30-52-410.png,
> image-2021-03-06-09-34-05-518.png
>
>
> Job fails to be submitted in tenant scenario
> !image-2021-03-06-09-30-52-410.png!
> because current user does not have the Znode permission.
> !image-2021-03-06-09-34-05-518.png!
> i think the parent znode acl is anyone.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
