duongkame opened a new pull request, #4254: URL: https://github.com/apache/ozone/pull/4254
## What changes were proposed in this pull request? This PR is to fix the issue that users without Admin permission got PERMISSION_DENIED when listing their volume. ``` >> kinit -kt compose/_keytabs/testuser.keytab testuser/[email protected] >> ozone sh volume list PERMISSION_DENIED User testuser/[email protected] doesn't have LIST permission to access volume Volume:/ ``` Please see details and analysis in the related JIRA. ## What is the link to the Apache JIRA https://issues.apache.org/jira/browse/HDDS-7920 ## How was this patch tested? Tested manually in docker with `testuser/[email protected]` (not an admin) in `testuser.keytab`. ``` sh-4.2$ kinit -kt compose/_keytabs/testuser.keytab testuser/[email protected] sh-4.2$ ozone sh volume list [ ] sh-4.2$ ``` I couldn't find any existing security test-suit to add this test to. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
