Greg Mann created MESOS-5564:
--------------------------------
Summary: Document common use cases of authorization
Key: MESOS-5564
URL: https://issues.apache.org/jira/browse/MESOS-5564
Project: Mesos
Issue Type: Documentation
Components: documentation
Reporter: Greg Mann
Our authorization documentation covers the existing functionality, but it
doesn't provide a practical how-to guide to help users accomplish common
authorized use cases. For example, a user recently reported that to gain full
use of the web UI after upgrading to Mesos 1.0, six new ACL rules needed to be
added: {{get_endpoints, view_frameworks, view_tasks, view_executors,
access_sandboxes, and access_mesos_logs}}. Rather than expecting users to
figure this out on their own, we should document the ACLs needed to accomplish
a common goal like this.
Similarly, authorizing a stateful framework to accomplish the actions it would
usually be expected to perform would involve setting rules for
{{register_frameworks, run_tasks, shutdown_frameworks, reserve_resources,
unreserve_resources, create_volumes, and destroy_volumes}}.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
