[
https://issues.apache.org/jira/browse/HBASE-14432?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14744230#comment-14744230
]
Stephen Yuan Jiang commented on HBASE-14432:
--------------------------------------------
The ACL change will happen in the admin task work (eg. HBASE-14107), as we
really need to use the owner information at that time.
[~mbertozzi], you are right, the 'user=' in toStringClassDetails is dupe of
'owner=' in Procedure.toString - in V1 patch, I removed the 'user=' information.
> Procedure V2 - Procedure.owner field should be set to enforce ACL on admin
> tasks
> --------------------------------------------------------------------------------
>
> Key: HBASE-14432
> URL: https://issues.apache.org/jira/browse/HBASE-14432
> Project: HBase
> Issue Type: Sub-task
> Components: proc-v2
> Affects Versions: 2.0.0, 1.1.2, 1.3.0
> Reporter: Stephen Yuan Jiang
> Assignee: Stephen Yuan Jiang
> Labels: security
> Attachments: HBASE-14432.patch, HBASE-14432.v1.patch
>
>
> In the Procedure class, the owner field is never set. We need to set it so
> that we can enforce ACLs on admin tasks such as whether a user has privilege
> to abort a procedure.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
