[ 
https://issues.apache.org/jira/browse/MESOS-6474?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15711253#comment-15711253
 ] 

Adam B commented on MESOS-6474:
-------------------------------

That was 1) the authz interface and local-authorizer handling, and 2) authz for 
nested containers, but we still need 3) authz for debugging APIs 
(LaunchNestedContainerSession, AttachContainerInput, AttachContainerOutput).

> Add fine-grained ACLs for authorization with the new debugging APIs
> -------------------------------------------------------------------
>
>                 Key: MESOS-6474
>                 URL: https://issues.apache.org/jira/browse/MESOS-6474
>             Project: Mesos
>          Issue Type: Task
>            Reporter: Kevin Klues
>            Assignee: Alexander Rojas
>              Labels: debugging, mesosphere, security
>
> We already have ACLs in place for determining if a user has access to see a 
> certain task when querying {{state.json}} on the master/agent, or 
> browse/download a task's sandbox. However, we will have to add similar ACLs 
> for making sure they have the correct permissions to execute the new 
> Debugging APs on behalf of those tasks.  



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to