[jira] [Issue Comment Deleted] (MESOS-5153) Sandboxes contents should be protected from unauthorized users

Gavin (JIRA) Mon, 29 Apr 2019 02:37:04 -0700


     [ 
https://issues.apache.org/jira/browse/MESOS-5153?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Gavin updated MESOS-5153:
-------------------------
    Comment: was deleted

(was: www.rtat.net)

> Sandboxes contents should be protected from unauthorized users
> --------------------------------------------------------------
>
>                 Key: MESOS-5153
>                 URL: https://issues.apache.org/jira/browse/MESOS-5153
>             Project: Mesos
>          Issue Type: Bug
>          Components: agent, security
>            Reporter: Alexander Rojas
>            Assignee: Alexander Rojas
>            Priority: Major
>              Labels: mesosphere, security
>             Fix For: 1.0.0
>
>
> MESOS-4956 introduced authentication support for the sandboxes. However, 
> authentication can only go as far as to tell whether an user is known to 
> mesos or not. An extra additional step is necessary to verify whether the 
> known user is allowed to executed the requested operation on the sandbox 
> (browse, read, download, debug).



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Issue Comment Deleted] (MESOS-5153) Sandboxes contents should be protected from unauthorized users

Reply via email to