[jira] [Resolved] (STORM-2814) Logviewer HTTP server should return 403 instead of 200 if the user is unauthorized

Jungtaek Lim (JIRA) Wed, 15 Nov 2017 15:31:35 -0800

     [ 
https://issues.apache.org/jira/browse/STORM-2814?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Jungtaek Lim resolved STORM-2814.
---------------------------------
       Resolution: Fixed
    Fix Version/s: 1.1.2
                   1.2.0
                   2.0.0

Thanks [~ethanli], I merged into master, 1.x, 1.1.x branches.

> Logviewer HTTP server should return 403 instead of 200 if the user is 
> unauthorized
> ----------------------------------------------------------------------------------
>
>                 Key: STORM-2814
>                 URL: https://issues.apache.org/jira/browse/STORM-2814
>             Project: Apache Storm
>          Issue Type: Bug
>            Reporter: Ethan Li
>            Assignee: Ethan Li
>            Priority: Minor
>              Labels: pull-request-available
>             Fix For: 2.0.0, 1.2.0, 1.1.2
>
>          Time Spent: 50m
>  Remaining Estimate: 0h
>
> {code:java}
>     public static Response buildResponseUnautohrizedUser(String user) {
>         String entity = buildUnauthorizedUserHtml(user);
>         return Response.status(OK)
>                 .entity(entity)
>                 .type(MediaType.TEXT_HTML_TYPE)
>                 .build();
>     }
> {code}
> It returns OK which is confusing.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

[jira] [Resolved] (STORM-2814) Logviewer HTTP server should return 403 instead of 200 if the user is unauthorized

Reply via email to