Adam B commented on MESOS-6474:

That was 1) the authz interface and local-authorizer handling, and 2) authz for 
nested containers, but we still need 3) authz for debugging APIs 
(LaunchNestedContainerSession, AttachContainerInput, AttachContainerOutput).

> Add fine-grained ACLs for authorization with the new debugging APIs
> -------------------------------------------------------------------
>                 Key: MESOS-6474
>                 URL: https://issues.apache.org/jira/browse/MESOS-6474
>             Project: Mesos
>          Issue Type: Task
>            Reporter: Kevin Klues
>            Assignee: Alexander Rojas
>              Labels: debugging, mesosphere, security
> We already have ACLs in place for determining if a user has access to see a 
> certain task when querying {{state.json}} on the master/agent, or 
> browse/download a task's sandbox. However, we will have to add similar ACLs 
> for making sure they have the correct permissions to execute the new 
> Debugging APs on behalf of those tasks.  

This message was sent by Atlassian JIRA

Reply via email to