[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16211838#comment-16211838 ] Hudson commented on YARN-7338: -- SUCCESS: Integrated in Jenkins build Hadoop-trunk-Commit #13109 (See

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16211741#comment-16211741 ] Vrushali C commented on YARN-7338: -- Thanks [~eyang] and [~wangda] for the updates. > Support same origin

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16211421#comment-16211421 ] Wangda Tan commented on YARN-7338: -- Thanks [~eyang]! > Support same origin policy for cross site

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16211362#comment-16211362 ] Eric Yang commented on YARN-7338: - [~wangda] HADOOP-14967 is opened for standard jetty CORS solution.

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16209933#comment-16209933 ] Wangda Tan commented on YARN-7338: -- Thanks [~eyang] for these suggestions. If you're fine with this patch,

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16209924#comment-16209924 ] Eric Yang commented on YARN-7338: - The patch looks ok. Hadoop CORS filter only prevents iframe of web

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16208839#comment-16208839 ] Wangda Tan commented on YARN-7338: -- Thanks [~sunil.gov...@gmail.com] for promptly working on this patch.

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16208819#comment-16208819 ] Hadoop QA commented on YARN-7338: - | (x) *{color:red}-1 overall{color}* | \\ \\ || Vote || Subsystem ||

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16208789#comment-16208789 ] Vrushali C commented on YARN-7338: -- Thanks [~sunil.gov...@gmail.com] for the patch! [~eyang] what are

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16208739#comment-16208739 ] Sunil G commented on YARN-7338: --- Thanks [~eyang] for sharing more points here. {noformat} Request

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16208131#comment-16208131 ] Eric Yang commented on YARN-7338: - [~sunilg] It is very important to have CORS header included for

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16207909#comment-16207909 ] Sunil G commented on YARN-7338: --- Also we have checked many bank websites like "Bank Of America" and google

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16207087#comment-16207087 ] Sunil G commented on YARN-7338: --- Thanks [~eyang] for clarifying. As mentioned earlier, when client access ui2

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16207080#comment-16207080 ] Eric Yang commented on YARN-7338: - Hi [~sunilg], If the new UI has ability to view container execution

[jira] [Commented] (YARN-7338) Support same origin policy for cross site scripting prevention.

[ https://issues.apache.org/jira/browse/YARN-7338?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=16206987#comment-16206987 ] Sunil G commented on YARN-7338: --- UI2 is launched as a separate service context in same RM webserver. And UI2