[jira] [Commented] (YARN-8415) TimelineWebServices.getEntity should throw ForbiddenException instead of 404 when ACL checks fail

Mon, 02 Jul 2018 16:07:26 -0700 


    [ 
https://issues.apache.org/jira/browse/YARN-8415?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16530554#comment-16530554
 ] 

Hudson commented on YARN-8415:
------------------------------

SUCCESS: Integrated in Jenkins build Hadoop-trunk-Commit #14515 (See 
[https://builds.apache.org/job/Hadoop-trunk-Commit/14515/])
YARN-8415. TimelineWebServices.getEntity should throw ForbiddenException 
(sunilg: rev fa9ef15ecd6dc30fb260e1c342a2b51505d39b6b)
* (edit) 
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-applicationhistoryservice/src/main/java/org/apache/hadoop/yarn/server/timeline/webapp/TimelineWebServices.java
* (edit) 
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-applicationhistoryservice/src/main/java/org/apache/hadoop/yarn/server/timeline/RollingLevelDBTimelineStore.java
* (edit) 
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-applicationhistoryservice/src/test/java/org/apache/hadoop/yarn/server/timeline/webapp/TestTimelineWebServices.java
* (edit) 
hadoop-yarn-project/hadoop-yarn/hadoop-yarn-server/hadoop-yarn-server-applicationhistoryservice/src/main/java/org/apache/hadoop/yarn/server/timeline/TimelineDataManager.java


> TimelineWebServices.getEntity should throw ForbiddenException instead of 404 
> when ACL checks fail
> -------------------------------------------------------------------------------------------------
>
>                 Key: YARN-8415
>                 URL: https://issues.apache.org/jira/browse/YARN-8415
>             Project: Hadoop YARN
>          Issue Type: Bug
>            Reporter: Sumana Sathish
>            Assignee: Suma Shivaprasad
>            Priority: Major
>             Fix For: 3.2.0, 3.1.1
>
>         Attachments: YARN-8415.1.patch, YARN-8415.2.patch, YARN-8415.3.patch
>
>
> {noformat}
> private TimelineEntity doGetEntity(
>       String entityType,
>       String entityId,
>       EnumSet<Field> fields,
>       UserGroupInformation callerUGI) throws YarnException, IOException {
>     TimelineEntity entity = null;
>     entity =
>         store.getEntity(entityId, entityType, fields);
>     if (entity != null) {
>       addDefaultDomainIdIfAbsent(entity);
>       // check ACLs
>       if (!timelineACLsManager.checkAccess(
>           callerUGI, ApplicationAccessType.VIEW_APP, entity)) {
>           entity = null;   //Should differentiate from an entity get failure 
> vs ACL check failure here by throwing an Exception.*
>       }
>     }
>     return entity;
>   }
> {noformat}



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to