[
https://issues.apache.org/jira/browse/MESOS-6474?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15711253#comment-15711253
]
Adam B commented on MESOS-6474:
-------------------------------
That was 1) the authz interface and local-authorizer handling, and 2) authz for
nested containers, but we still need 3) authz for debugging APIs
(LaunchNestedContainerSession, AttachContainerInput, AttachContainerOutput).
> Add fine-grained ACLs for authorization with the new debugging APIs
> -------------------------------------------------------------------
>
> Key: MESOS-6474
> URL: https://issues.apache.org/jira/browse/MESOS-6474
> Project: Mesos
> Issue Type: Task
> Reporter: Kevin Klues
> Assignee: Alexander Rojas
> Labels: debugging, mesosphere, security
>
> We already have ACLs in place for determining if a user has access to see a
> certain task when querying {{state.json}} on the master/agent, or
> browse/download a task's sandbox. However, we will have to add similar ACLs
> for making sure they have the correct permissions to execute the new
> Debugging APs on behalf of those tasks.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
