Adam Faris created HDFS-5569:
--------------------------------
Summary: WebHDFS should support a deny/allow list for data access
Key: HDFS-5569
URL: https://issues.apache.org/jira/browse/HDFS-5569
Project: Hadoop HDFS
Issue Type: Improvement
Components: webhdfs
Reporter: Adam Faris
Currently we can't restrict what networks are allowed to transfer data using
WebHDFS. Obviously we can use firewalls to block ports, but this can be
complicated and problematic to maintain. Additionally, because all the jetty
servlets run inside the same container, blocking access to jetty to prevent
WebHDFS transfers also blocks the other servlets running inside that same jetty
container.
I am requesting a deny/allow feature be added to WebHDFS. This is already done
with the Apache HTTPD server, and is what I'd like to see the deny/allow list
modeled after. Thanks.
--
This message was sent by Atlassian JIRA
(v6.1#6144)
