-
Notifications
You must be signed in to change notification settings - Fork 28.2k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[SPARK-27678][UI] Allow user impersonation in the UI.
This feature allows proxy servers to identify the actual request user using a request parameter, and performs access control checks against that user instead of the authenticated user. Impersonation is only allowed if the authenticated user is configured as an admin. The request parameter used ("doAs") matches the one currently used by Knox, but it should be easy to change / customize if different proxy servers use a different way of identifying the original user. Tested with updated unit tests and also with a live server behind Knox. Closes #24582 from vanzin/SPARK-27678. Authored-by: Marcelo Vanzin <vanzin@cloudera.com> Signed-off-by: Marcelo Vanzin <vanzin@cloudera.com>
- Loading branch information
Marcelo Vanzin
committed
May 15, 2019
1 parent
bfb3ffe
commit d14e2d7
Showing
4 changed files
with
96 additions
and
33 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters