[jira] [Issue Comment Deleted] (MESOS-5150) Authorize Agent HTTP Endpoints

Gavin (JIRA) Mon, 29 Apr 2019 02:37:03 -0700


     [ 
https://issues.apache.org/jira/browse/MESOS-5150?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Gavin updated MESOS-5150:
-------------------------
    Comment: was deleted

(was: www.rtat.net)

> Authorize Agent HTTP Endpoints
> ------------------------------
>
>                 Key: MESOS-5150
>                 URL: https://issues.apache.org/jira/browse/MESOS-5150
>             Project: Mesos
>          Issue Type: Epic
>          Components: agent, security
>            Reporter: Adam B
>            Assignee: Alexander Rojas
>            Priority: Blocker
>              Labels: agent, authorization, mesosphere, security, slave
>             Fix For: 1.0.0
>
>
> As we add authentication in agent http endpoint handlers in MESOS-4847, we 
> now have the opportunity to perform ACL-based authorization on these 
> endpoints.
> Most important is the authorization of the /files endpoints, as those allow 
> access to executor sandboxes (and agent logs), and the operator may wish to 
> control which users may access which sandboxes.
> Similarly, the operator may only want certain users to be able to view agent 
> flags, change logging level, enable the profiler, etc.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Issue Comment Deleted] (MESOS-5150) Authorize Agent HTTP Endpoints

Reply via email to