You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@sentry.apache.org by "Hrishikesh Gadre (JIRA)" <ji...@apache.org> on 2017/12/27 23:28:00 UTC

[jira] [Created] (SENTRY-2111) No audit logs for Solr operations invoked by a superuser

Hrishikesh Gadre created SENTRY-2111:
----------------------------------------

             Summary: No audit logs for Solr operations invoked by a superuser
                 Key: SENTRY-2111
                 URL: https://issues.apache.org/jira/browse/SENTRY-2111
             Project: Sentry
          Issue Type: Bug
    Affects Versions: 2.0.0
            Reporter: Hrishikesh Gadre
            Assignee: Hrishikesh Gadre


As part of SENTRY-1475, we reimplemented the Sentry/Solr integration which also includes audit logs. Currently if an operation is invoked by a SOLR super user, it is not audited.

https://github.com/apache/sentry/blob/23bc2159ae3754d2b09fc058f8a9cab62daa9d38/sentry-binding/sentry-binding-solr/src/main/java/org/apache/sentry/binding/solr/authz/SentrySolrPluginImpl.java#L175-L177

We should make sure that this operation is recorded in the audit trail for future reference.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)