[
https://issues.apache.org/jira/browse/MESOS-5153?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15306378#comment-15306378
]
Adam B commented on MESOS-5153:
-------------------------------
commit 8443b18489c48996df0a88f90baf260a0fb12176
Author: Alexander Rojas <[email protected]>
Date: Sun May 29 11:16:03 2016 -0700
Enabled authorization for Mesos log access.
Uses the authorization primitives in `mesos::internal::Files` to add
protection of the Mesos logs on both master and agents.
Review: https://reviews.apache.org/r/47921/
All that's left now is the DOCS!
> Sandboxes contents should be protected from unauthorized users
> --------------------------------------------------------------
>
> Key: MESOS-5153
> URL: https://issues.apache.org/jira/browse/MESOS-5153
> Project: Mesos
> Issue Type: Bug
> Components: security, slave
> Reporter: Alexander Rojas
> Assignee: Alexander Rojas
> Labels: mesosphere, security
> Fix For: 0.29.0
>
>
> MESOS-4956 introduced authentication support for the sandboxes. However,
> authentication can only go as far as to tell whether an user is known to
> mesos or not. An extra additional step is necessary to verify whether the
> known user is allowed to executed the requested operation on the sandbox
> (browse, read, download, debug).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
