Home Explore Help
Register Sign In
apache
/
hadoop
mirror of https://github.com/apache/hadoop.git
2
0
Fork 1
Files Issues 0 Wiki
Browse Source

HADOOP-12584. Disable browsing the static directory in HttpServer2. Contributed by Robert Kanter.

Haohui Mai 9 years ago
parent
bf82a8de30
commit
b7e3f419bd
2 changed files with 6 additions and 0 deletions
Split View Show Diff Stats
  1. 3 0
      hadoop-common-project/hadoop-common/CHANGES.txt
  2. 3 0
      hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/http/HttpServer2.java

+ 3 - 0
hadoop-common-project/hadoop-common/CHANGES.txt
View File 

@@ -808,6 +808,9 @@ Release 2.8.0 - UNRELEASED
 
     HADOOP-11901. BytesWritable fails to support 2G chunks due to integer
 
     overflow. (Reynold Xin via wheat9)
 
 
+    HADOOP-12584. Disable browsing the static directory in HttpServer2.
 
+    (Robert Kanter via wheat9)
 
+
 
 Release 2.7.3 - UNRELEASED
 
 
   INCOMPATIBLE CHANGES

+ 3 - 0
hadoop-common-project/hadoop-common/src/main/java/org/apache/hadoop/http/HttpServer2.java
View File 

@@ -562,6 +562,9 @@ public final class HttpServer2 implements FilterContainer {
 
     staticContext.setResourceBase(appDir + "/static");
 
     staticContext.addServlet(DefaultServlet.class, "/*");
 
     staticContext.setDisplayName("static");
 
+    @SuppressWarnings("unchecked")
 
+    Map<String, String> params = staticContext.getInitParams();
 
+    params.put("org.mortbay.jetty.servlet.Default.dirAllowed", "false");
 
     setContextAttributes(staticContext, conf);
 
     defaultContexts.put(staticContext, true);
 
   }