[
https://issues.apache.org/jira/browse/HBASE-15445?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Lars George updated HBASE-15445:
--------------------------------
Assignee: Robert Neumann (was: Lars George)
> Add support for ACLs for web based UIs
> --------------------------------------
>
> Key: HBASE-15445
> URL: https://issues.apache.org/jira/browse/HBASE-15445
> Project: HBase
> Issue Type: Bug
> Components: master, regionserver, REST, Thrift
> Affects Versions: 1.2.0, 1.0.3, 1.1.3
> Reporter: Lars George
> Assignee: Robert Neumann
>
> Since 0.99 and HBASE-10336 we have our own HttpServer class that (like the
> counterpart in Hadoop) supports setting an ACL to allow only named users to
> access the web based UIs of the server processes. In secure mode we should
> support this as it works hand-in-hand with Kerberos authorization and the UGI
> class. It seems all we have to do is add a property allowing to set the ACL
> property as a list of users and/or groups that have access to the UIs if
> needed.
> As an add-on, we could combine this with the {{read-only}} flag, so that some
> users can only access the UIs with any option to trigger, for example,
> splits.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
