You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by Madhan Neethiraj <ma...@apache.org> on 2015/06/19 23:39:21 UTC

Review Request 35670: RANGER-561: YARN plugin updated to fallback to YARN ACL, instead of creating Ranger policies

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/35670/
-----------------------------------------------------------

Review request for ranger, Alok Lal, Don Bosco Durai, Gautam Borad, Ramesh Mani, Selvamohan Neethiraj, and Velmurugan Periasamy.


Bugs: RANGER-561
    https://issues.apache.org/jira/browse/RANGER-561


Repository: ranger


Description
-------

YARN plugin updated to fallback to YARN ACL, instead of creating Ranger policies


Diffs
-----

  agents-common/src/main/java/org/apache/ranger/authorization/hadoop/constants/RangerHadoopConstants.java a800027 
  plugin-yarn/src/main/java/org/apache/ranger/authorization/yarn/authorizer/RangerYarnAuthorizer.java e322477 

Diff: https://reviews.apache.org/r/35670/diff/


Testing
-------

Verified that YARN ACL are evaluated when Ranger policies can't determine the access; also the acl-enforce is appropriately set to either ranger-acl or yarn-acl


Thanks,

Madhan Neethiraj

Re: Review Request 35670: RANGER-561: YARN plugin updated to fallback to YARN ACL, instead of creating Ranger policies

Posted by Madhan Neethiraj <ma...@apache.org>.

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/35670/
-----------------------------------------------------------

(Updated June 25, 2015, 12:06 a.m.)


Review request for ranger, Alok Lal, Don Bosco Durai, Gautam Borad, Ramesh Mani, Selvamohan Neethiraj, and Velmurugan Periasamy.


Changes
-------

Updated yarnAcl to replace entity permissions given in setPermissions() API, instead of appending to existing permissions for the entity - per discussion with YARN team


Bugs: RANGER-561
    https://issues.apache.org/jira/browse/RANGER-561


Repository: ranger


Description
-------

YARN plugin updated to fallback to YARN ACL, instead of creating Ranger policies


Diffs (updated)
-----

  agents-common/src/main/java/org/apache/ranger/authorization/hadoop/constants/RangerHadoopConstants.java a800027 
  plugin-yarn/src/main/java/org/apache/ranger/authorization/yarn/authorizer/RangerYarnAuthorizer.java e322477 

Diff: https://reviews.apache.org/r/35670/diff/


Testing
-------

Verified that YARN ACL are evaluated when Ranger policies can't determine the access; also the acl-enforce is appropriately set to either ranger-acl or yarn-acl


Thanks,

Madhan Neethiraj