[ranger] branch master updated: Revert "RANGER-3590 : User with Auditor role in security zone can change a policy's name and description"

[pr...@apache.org]

This is an automated email from the ASF dual-hosted git repository.

pradeep pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/ranger.git


The following commit(s) were added to refs/heads/master by this push:
     new e5c7ee7  Revert "RANGER-3590 : User with Auditor role in security zone can change a policy's name and description"
e5c7ee7 is described below

commit e5c7ee70239be8e6a1df877deac3dded4ab7fc29
Author: pradeep <pr...@apache.org>
AuthorDate: Tue Jan 25 20:12:32 2022 +0530

    Revert "RANGER-3590 : User with Auditor role in security zone can change a policy's name and description"
    
    This reverts commit 09ec4d90fbd9afa643eaeca29765563a00866257.
---
 security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java b/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java
index 3e10e78..098188e 100644
--- a/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java
+++ b/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java
@@ -3551,9 +3551,7 @@ public class ServiceREST {
 			//for zone policy create /update / delete
 			if(!StringUtils.isEmpty(policy.getZoneName()) && serviceMgr.isZoneAdmin(policy.getZoneName())){
 				isAllowed = true;
-			}else if(!StringUtils.isEmpty(policy.getZoneName()) && serviceMgr.isZoneAuditor(policy.getZoneName())){
-				isAllowed = false;
-			}else {
+			}else{
 				isAllowed = hasAdminAccess(policy, userName, userGroups);
 			}