[jira] [Updated] (MESOS-4932) Propose Design for Authorization based filtering for endpoints.
[ https://issues.apache.org/jira/browse/MESOS-4932?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Artem Harutyunyan updated MESOS-4932: - Sprint: Mesosphere Sprint 31, Mesosphere Sprint 32, Mesosphere Sprint 33 (was: Mesosphere Sprint 31, Mesosphere Sprint 32) > Propose Design for Authorization based filtering for endpoints. > --- > > Key: MESOS-4932 > URL: https://issues.apache.org/jira/browse/MESOS-4932 > Project: Mesos > Issue Type: Task > Components: security >Reporter: Joerg Schad >Assignee: Joerg Schad > Labels: authorization, mesosphere, security > Fix For: 0.29.0 > > -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Updated] (MESOS-4932) Propose Design for Authorization based filtering for endpoints.
[ https://issues.apache.org/jira/browse/MESOS-4932?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Adam B updated MESOS-4932: -- Fix Version/s: 0.29.0 > Propose Design for Authorization based filtering for endpoints. > --- > > Key: MESOS-4932 > URL: https://issues.apache.org/jira/browse/MESOS-4932 > Project: Mesos > Issue Type: Task > Components: security >Reporter: Joerg Schad >Assignee: Joerg Schad > Labels: authorization, mesosphere, security > Fix For: 0.29.0 > > -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Updated] (MESOS-4932) Propose Design for Authorization based filtering for endpoints.
[ https://issues.apache.org/jira/browse/MESOS-4932?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Artem Harutyunyan updated MESOS-4932: - Sprint: Mesosphere Sprint 31, Mesosphere Sprint 32 (was: Mesosphere Sprint 31) > Propose Design for Authorization based filtering for endpoints. > --- > > Key: MESOS-4932 > URL: https://issues.apache.org/jira/browse/MESOS-4932 > Project: Mesos > Issue Type: Task > Components: security >Reporter: Joerg Schad >Assignee: Joerg Schad > Labels: authorization, mesosphere, security > -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Updated] (MESOS-4932) Propose Design for Authorization based filtering for endpoints.
[ https://issues.apache.org/jira/browse/MESOS-4932?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Adam B updated MESOS-4932: -- Sprint: Mesosphere Sprint 31 Story Points: 5 I can imagine two different ACL formats, both of which we may want to support: 1. Adam can VIEW_TASKINFOS_WITH_ROLE "foo" 2. Bob can VIEW_TASKINFOS_WITH_OWNER "Adam" The former grants Adam permission to view all tasks/executors belonging to any framework in the "foo" role. This is rather coarse-grained, but allows a team to share access across all frameworks in their role. The latter allows all of Adam's tasks to be shared with another user, Bob. There is no easy way yet to share only some of Adam's tasks with Bob, unless we authorize based on taskId (won't scale), or wait until we have multi-role frameworks. We may consider allowing the owner of a TaskInfo to be able to access their own tasks without an explicit ACL set. > Propose Design for Authorization based filtering for endpoints. > --- > > Key: MESOS-4932 > URL: https://issues.apache.org/jira/browse/MESOS-4932 > Project: Mesos > Issue Type: Task > Components: security >Reporter: Joerg Schad >Assignee: Joerg Schad > Labels: authorization, mesosphere, security > -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Updated] (MESOS-4932) Propose Design for Authorization based filtering for endpoints.
[ https://issues.apache.org/jira/browse/MESOS-4932?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Adam B updated MESOS-4932: -- Component/s: security > Propose Design for Authorization based filtering for endpoints. > --- > > Key: MESOS-4932 > URL: https://issues.apache.org/jira/browse/MESOS-4932 > Project: Mesos > Issue Type: Task > Components: security >Reporter: Joerg Schad >Assignee: Joerg Schad > Labels: authorization, mesosphere, security > -- This message was sent by Atlassian JIRA (v6.3.4#6332)
[jira] [Updated] (MESOS-4932) Propose Design for Authorization based filtering for endpoints.
[ https://issues.apache.org/jira/browse/MESOS-4932?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Adam B updated MESOS-4932: -- Labels: authorization mesosphere security (was: ) > Propose Design for Authorization based filtering for endpoints. > --- > > Key: MESOS-4932 > URL: https://issues.apache.org/jira/browse/MESOS-4932 > Project: Mesos > Issue Type: Task >Reporter: Joerg Schad >Assignee: Joerg Schad > Labels: authorization, mesosphere, security > -- This message was sent by Atlassian JIRA (v6.3.4#6332)
