#165 Access control for management and monitoring

v3.2
closed
Laurent Cohen
5
2012-08-08
2012-01-17
Laurent Cohen
No

This is about having the possibility to restrict or grant the functionalities in the admin console, based on user-defined criteria.
An example scenario (one of many) could be to have 2 sorts of users: normal users who can only monitor their jobs, and "power users" who have full control on the admin console and can shutdonw nodes and servers.

We do not want to ipose a specific ACL scheme, but provide the extension points for hooking any developer-defined ACL strategy.

Discussion

  • Laurent Cohen
    Laurent Cohen
    2012-01-17

    In fact this goes beyond just the admin console.
    We also need to perform some kind of authentication at the remote JMX connector level, so that unauthroized users can't just donwload an admin console and take control of the grid.

     
  • Laurent Cohen
    Laurent Cohen
    2012-01-17

    • assigned_to: nobody --> lolocohen
     
  • Laurent Cohen
    Laurent Cohen
    2012-01-17

    • summary: Access control in the admin console --> Access control for management and monitoring
     
  • Laurent Cohen
    Laurent Cohen
    2012-04-17

    • milestone: 2352632 --> v3.2
     
  • Laurent Cohen
    Laurent Cohen
    2012-08-08

    • status: open --> closed