[jira] [Commented] (MESOS-6998) Add authentication support to agent's '/v1/executor' endpoint

Sat, 25 Mar 2017 12:30:06 -0700 

    [ 
https://issues.apache.org/jira/browse/MESOS-6998?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15941873#comment-15941873
 ] 

Greg Mann commented on MESOS-6998:
----------------------------------

{code}
commit 1bb7ed28977d9b03c6a9162e8d8d10c7420a47f9
Author: Greg Mann <[email protected]>
Date:   Fri Mar 24 10:01:06 2017 -0700

    Allowed the agent to require executor authentication.

    This patch updates the agent initialization code to make use
    of the new `--authenticate_http_executors` flag. When the
    flag is set, authentication is required on the executor realm
    and the JWT authenticator is loaded.

    Review: https://reviews.apache.org/r/57671/
{code}
{code}
commit 3e62a134210f1ea3f5de8b02f761d2e50898b70d
Author: Greg Mann <[email protected]>
Date:   Fri Mar 24 10:00:59 2017 -0700

    Enabled authentication on the V1 executor API.

    This patch updates the `v1/executor` endpoint on the agent to
    route through the correct authentication realm, so that the
    agent may require authentication on the executor API.

    Review: https://reviews.apache.org/r/57670/
{code}
{code}
commit ede794446284c5a68dd0ca205e0fee12edfa501c
Author: Greg Mann <[email protected]>
Date:   Fri Mar 24 10:00:50 2017 -0700

    Added the '--authenticate_http_executors' agent flag.

    This patch adds a new agent flag, `--authenticate_http_executors`,
    which requires authentication on the V1 executor API and loads the
    default JWT authenticator.

    Review: https://reviews.apache.org/r/57666/
{code}

> Add authentication support to agent's '/v1/executor' endpoint
> -------------------------------------------------------------
>
>                 Key: MESOS-6998
>                 URL: https://issues.apache.org/jira/browse/MESOS-6998
>             Project: Mesos
>          Issue Type: Task
>          Components: agent, security
>            Reporter: Greg Mann
>            Assignee: Greg Mann
>              Labels: agent, executor, mesosphere, security
>
> The new agent flag {{--authenticate_http_executors}} must be added. When set, 
> it will require that requests received on the {{/v1/executor}} endpoint be 
> authenticated, and the default JWT authenticator will be loaded. Note that 
> this will require the addition of a new authentication realm for that 
> endpoint.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

Reply via email to