[ https://issues.apache.org/jira/browse/YARN-2086?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Steve Loughran resolved YARN-2086. ---------------------------------- Resolution: Won't Fix you can't open the filter and keep the AM secure ... the only secure solution here is for the proxy to support the full set of HTTP verbs > AmIpFilter to support REST APIs > ------------------------------- > > Key: YARN-2086 > URL: https://issues.apache.org/jira/browse/YARN-2086 > Project: Hadoop YARN > Issue Type: Sub-task > Components: webapp > Reporter: Steve Loughran > > The {{AmIpFilter}} doesn't like REST APIs, as all operations are redirected > to the proxy as a 302. Even if the proxy did relay all verbs, the filter > would need to return a 307 and hope the client was enable to re-issue the > verb. > The alternative is to have a dedicated part of the webapp to be unproxied, > which we did with a custom filter to not relay "/ws/*", or even allow apps to > register a rest endpoint directly, either in the AppReport data, or via the > YARN-913 registry -- This message was sent by Atlassian JIRA (v6.3.4#6332)