Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-12322

Auth check for some methods in ArtifactRepository

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Security
    • Labels:
    • Rank:
      1|i0068v:

      Description

      Now in ArtifactRepository, we enforce when we add/get/remove the artifacts. But for some methods, we do not have any enforce, e.g, getApplicationClasses(), it will be good to figure out if we need authorization in these methods and what is the auth policy.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                yaojie Yaojie Feng
                Reporter:
                yaojie Yaojie Feng
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated: