You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by "Ramesh Mani (JIRA)" <ji...@apache.org> on 2019/06/18 06:06:00 UTC
[jira] [Updated] (RANGER-2474) Policy version and details in access
audits wrong when deny condition added to policy
[ https://issues.apache.org/jira/browse/RANGER-2474?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Ramesh Mani updated RANGER-2474:
--------------------------------
Attachment: 0001-RANGER-2474-Policy-version-and-details-in-access-aud.patch
> Policy version and details in access audits wrong when deny condition added to policy
> -------------------------------------------------------------------------------------
>
> Key: RANGER-2474
> URL: https://issues.apache.org/jira/browse/RANGER-2474
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Affects Versions: 2.0.0
> Reporter: suja s
> Assignee: Ramesh Mani
> Priority: Major
> Attachments: 0001-RANGER-2474-Policy-version-and-details-in-access-aud.patch
>
>
> Scenario:
> Create a ranger hive policy for a test table for select access - version1
> Perform select - operation successful (done for impala)
> Validate access audits - policy version is 1, clicking on policyid shows details of policy at version1
> Edit the policy to include and an additional policy item under allow or a new condition under allow exception or deny exception (not under deny)
> Perform operation
> Validate access audits - policy version is 2, clicking on policyid shows details of policy at version2
> Edit the policy to include a deny condition
> Perform operation
> Validate access audits - policy version is 1, clicking on policyid shows details of policy at version1 though enforcement happens as per policy version3
> Note - Versioning is back to normal when deny condition is removed
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)