You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by Abhay Kulkarni <ak...@hortonworks.com> on 2020/01/16 01:27:08 UTC
Review Request 72007: RANGER-2703: Grant operation succeeds even
though there is no delegate admin permission
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72007/
-----------------------------------------------------------
Review request for ranger and Ramesh Mani.
Bugs: RANGER-2703
https://issues.apache.org/jira/browse/RANGER-2703
Repository: ranger
Description
-------
Grant or revoke operations in Kerberized environment create or update Ranger policy even when the grantor does not have delegated admin access on the resource being granted access to.
Diffs
-----
security-admin/src/main/java/org/apache/ranger/biz/RangerBizUtil.java 71511dc4d
security-admin/src/main/java/org/apache/ranger/rest/RoleREST.java 9b225a3d2
security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java f27be59e1
Diff: https://reviews.apache.org/r/72007/diff/1/
Testing
-------
Tested in a kerberized cluster with Grant/Revoke commands.
Thanks,
Abhay Kulkarni
Re: Review Request 72007: RANGER-2703: Grant operation succeeds even
though there is no delegate admin permission
Posted by Ramesh Mani <rm...@hortonworks.com>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72007/#review219290
-----------------------------------------------------------
Ship it!
Ship It!
- Ramesh Mani
On Jan. 16, 2020, 1:27 a.m., Abhay Kulkarni wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72007/
> -----------------------------------------------------------
>
> (Updated Jan. 16, 2020, 1:27 a.m.)
>
>
> Review request for ranger and Ramesh Mani.
>
>
> Bugs: RANGER-2703
> https://issues.apache.org/jira/browse/RANGER-2703
>
>
> Repository: ranger
>
>
> Description
> -------
>
> Grant or revoke operations in Kerberized environment create or update Ranger policy even when the grantor does not have delegated admin access on the resource being granted access to.
>
>
> Diffs
> -----
>
> security-admin/src/main/java/org/apache/ranger/biz/RangerBizUtil.java 71511dc4d
> security-admin/src/main/java/org/apache/ranger/rest/RoleREST.java 9b225a3d2
> security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java f27be59e1
>
>
> Diff: https://reviews.apache.org/r/72007/diff/1/
>
>
> Testing
> -------
>
> Tested in a kerberized cluster with Grant/Revoke commands.
>
>
> Thanks,
>
> Abhay Kulkarni
>
>