[ https://issues.apache.org/jira/browse/HBASE-19400?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16331399#comment-16331399 ]
Andrew Purtell commented on HBASE-19400: ---------------------------------------- {quote}Not sure if AccessChecker instance should go in MasterRpcServices or HMaster. {quote} I like the general idea. What about access control decisions that are made in the RegionServer context? Neither of those places seem good then. Something shared among all roles. > Add missing security hooks for MasterService RPCs > ------------------------------------------------- > > Key: HBASE-19400 > URL: https://issues.apache.org/jira/browse/HBASE-19400 > Project: HBase > Issue Type: Sub-task > Affects Versions: 2.0.0-beta-1 > Reporter: Balazs Meszaros > Assignee: Balazs Meszaros > Priority: Major > Attachments: HBASE-19400.master.001.patch, > HBASE-19400.master.002.patch > > > The following RPC methods do not call the observers, therefore they are not > guarded by AccessController: > - normalize > - setNormalizerRunning > - runCatalogScan > - enableCatalogJanitor > - runCleanerChore > - setCleanerChoreRunning > - execMasterService > - execProcedure > - execProcedureWithRet -- This message was sent by Atlassian JIRA (v7.6.3#76005)