[
https://issues.apache.org/jira/browse/MESOS-4847?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Adam B updated MESOS-4847:
--------------------------
Summary: Agent HTTP Authentication (was: Add authentication to agent http
endpoints)
> Agent HTTP Authentication
> -------------------------
>
> Key: MESOS-4847
> URL: https://issues.apache.org/jira/browse/MESOS-4847
> Project: Mesos
> Issue Type: Epic
> Components: security, slave
> Reporter: Adam B
> Assignee: Greg Mann
> Labels: authentication, mesosphere, security
>
> Now that the master has set a standard for http authentication, the agents
> should join the fun. Since a user must access the agent node to get to
> sandbox data, it and the rest of the endpoints should be configurable to
> require authentication, to prevent rogue users from viewing/modifying agent
> settings/data.
> This will involve adding agent flags like `--authenticate_http
> --http_authenticators="basic"`
> and even the equivalent of `--credentials` (maybe renamed)
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
