[
https://issues.apache.org/jira/browse/MESOS-5153?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15309400#comment-15309400
]
Adam B commented on MESOS-5153:
-------------------------------
commit 53b5164bb51ebe850dec5ab19b8382f5c4a59391
Author: Alexander Rojas <[email protected]>
Date: Tue May 31 23:20:50 2016 -0700
Added documentation for access_sandboxes and access_mesos_logs acls.
Modifies the file `acls.proto` to take into consideration the added
authorization actions `access_sandboxes` and `access_mesos_logs`.
Review: https://reviews.apache.org/r/48048/
> Sandboxes contents should be protected from unauthorized users
> --------------------------------------------------------------
>
> Key: MESOS-5153
> URL: https://issues.apache.org/jira/browse/MESOS-5153
> Project: Mesos
> Issue Type: Bug
> Components: security, slave
> Reporter: Alexander Rojas
> Assignee: Alexander Rojas
> Labels: mesosphere, security
> Fix For: 1.0.0
>
>
> MESOS-4956 introduced authentication support for the sandboxes. However,
> authentication can only go as far as to tell whether an user is known to
> mesos or not. An extra additional step is necessary to verify whether the
> known user is allowed to executed the requested operation on the sandbox
> (browse, read, download, debug).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
