[
https://issues.apache.org/jira/browse/HDDS-6691?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17541369#comment-17541369
]
Siyao Meng commented on HDDS-6691:
----------------------------------
The permission check is fixed in [this
commit|https://github.com/apache/ozone/pull/3450/commits/5105e62813f8ac024957a9738058d627b23c82dd]
as a part of HDDS-6701.
> [MultiTenancy] User get-secret throws USER_MISMATCH
> ---------------------------------------------------
>
> Key: HDDS-6691
> URL: https://issues.apache.org/jira/browse/HDDS-6691
> Project: Apache Ozone
> Issue Type: Sub-task
> Components: Ozone Manager
> Affects Versions: 1.3.0
> Reporter: Soumitra Sulav
> Priority: Critical
> Labels: ozone-multitenancy
>
> User get-secret API fails with user mismatch even though its kinited with
> correct user.
>
> {code:java}
> bash-4.2$ kinit -kt /etc/security/keytabs/testuser.keytab testuser/om
> bash-4.2$ ozone tenant user get-secret 'tenantone$testuser'
> USER_MISMATCH Requested accessId 'tenantone$testuser' doesn't match current
> user 'testuser/[email protected]', nor does current user has administrator
> privilege.{code}
--
This message was sent by Atlassian Jira
(v8.20.7#820007)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
