[
https://issues.apache.org/jira/browse/MESOS-3903?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15085968#comment-15085968
]
Greg Mann commented on MESOS-3903:
----------------------------------
Review with documentation: https://reviews.apache.org/r/41989/
> Add authorization for '/create-volume' and '/destroy-volume' HTTP endpoints
> ---------------------------------------------------------------------------
>
> Key: MESOS-3903
> URL: https://issues.apache.org/jira/browse/MESOS-3903
> Project: Mesos
> Issue Type: Improvement
> Reporter: Greg Mann
> Assignee: Greg Mann
> Labels: mesosphere, persistent-volumes
>
> This is the fourth in a series of tickets that adds authorization support for
> persistent volumes.
> We need to add ACL authorization for the '/create-volume' and
> '/destroy-volume' HTTP endpoints. In other complementary work, authorization
> for frameworks performing {{CREATE}} and {{DESTROY}} operations is being
> added by MESOS-3065.
> This will consist of adding authorization calls into the HTTP endpoint code
> in {{src/master/http.cpp}}, as well as tests for both failed & successful
> calls to '/create-volumes' and '/destroy-volumes' with authorization. We also
> must ensure that the {{principal}} field of {{Resource.DiskInfo.Persistence}}
> is being populated correctly.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
