You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by Madhan Neethiraj <ma...@apache.org> on 2022/09/14 04:27:23 UTC
Review Request 74118: RANGER-3080: service-admin/zone-admin users should be allowed to create/update policies with resource-excludes flag
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/74118/
-----------------------------------------------------------
Review request for ranger, Abhishek Kumar, Ankita Sinha, Kishor Gollapalliwar, Abhay Kulkarni, Mehul Parikh, Pradeep Agrawal, Ramesh Mani, Sailaja Polavarapu, Subhrat Chaudhary, and Velmurugan Periasamy.
Bugs: RANGER-3080
https://issues.apache.org/jira/browse/RANGER-3080
Repository: ranger
Description
-------
- updated policy create/update REST API validations to consider service-admin and zone-admin as users with admin privileges
Diffs
-----
security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java b79188733
Diff: https://reviews.apache.org/r/74118/diff/1/
Testing
-------
- verified that service-admin users can create/update policies with resource-excludes flag for the services in which they are listed as admin i.e., service config: service.admin.users
- verified that zone-admin users can create/update policies with resource-excludes flag in the zones in which they are listed as admin
Thanks,
Madhan Neethiraj
Re: Review Request 74118: RANGER-3080: service-admin/zone-admin users should be allowed to create/update policies with resource-excludes flag
Posted by Ramesh Mani <rm...@hortonworks.com>.
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/74118/#review224666
-----------------------------------------------------------
Ship it!
Ship It!
- Ramesh Mani
On Sept. 14, 2022, 4:27 a.m., Madhan Neethiraj wrote:
>
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/74118/
> -----------------------------------------------------------
>
> (Updated Sept. 14, 2022, 4:27 a.m.)
>
>
> Review request for ranger, Abhishek Kumar, Ankita Sinha, Kishor Gollapalliwar, Abhay Kulkarni, Mehul Parikh, Pradeep Agrawal, Ramesh Mani, Sailaja Polavarapu, Subhrat Chaudhary, and Velmurugan Periasamy.
>
>
> Bugs: RANGER-3080
> https://issues.apache.org/jira/browse/RANGER-3080
>
>
> Repository: ranger
>
>
> Description
> -------
>
> - updated policy create/update REST API validations to consider service-admin and zone-admin as users with admin privileges
>
>
> Diffs
> -----
>
> security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java b79188733
>
>
> Diff: https://reviews.apache.org/r/74118/diff/1/
>
>
> Testing
> -------
>
> - verified that service-admin users can create/update policies with resource-excludes flag for the services in which they are listed as admin i.e., service config: service.admin.users
> - verified that zone-admin users can create/update policies with resource-excludes flag in the zones in which they are listed as admin
>
>
> Thanks,
>
> Madhan Neethiraj
>
>