[
https://issues.apache.org/jira/browse/MAPREDUCE-5475?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13747867#comment-13747867
]
Vinod Kumar Vavilapalli commented on MAPREDUCE-5475:
----------------------------------------------------
The logged in user is AppAttemptId for client tokens, so for user based auth we
need the appSubmitter in the token. Looks like we'll need YARN-707, working on
it.
> MRClientService does not verify ACLs properly
> ---------------------------------------------
>
> Key: MAPREDUCE-5475
> URL: https://issues.apache.org/jira/browse/MAPREDUCE-5475
> Project: Hadoop Map/Reduce
> Issue Type: Bug
> Components: mr-am, mrv2
> Affects Versions: 2.0.4-alpha, 0.23.9
> Reporter: Jason Lowe
> Assignee: Jason Lowe
> Priority: Blocker
> Fix For: 2.1.1-beta
>
> Attachments: MAPREDUCE-5475.branch-0.23.patch, MAPREDUCE-5475.patch
>
>
> When MRClientService receives requests, it calls verifyAndGetJob which does
> not actually validate that the current user has the proper access.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
