You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@atlas.apache.org by "Shwetha G S (JIRA)" <ji...@apache.org> on 2016/06/20 09:26:05 UTC

[jira] [Updated] (ATLAS-814) Too many logs from Atlas authorization

     [ https://issues.apache.org/jira/browse/ATLAS-814?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Shwetha G S updated ATLAS-814:
------------------------------
    Fix Version/s:     (was: 0.7-incubating)

> Too many logs from Atlas authorization
> --------------------------------------
>
>                 Key: ATLAS-814
>                 URL: https://issues.apache.org/jira/browse/ATLAS-814
>             Project: Atlas
>          Issue Type: Bug
>            Reporter: Shwetha G S
>            Assignee: Nixon Rodrigues
>
> For every request, the following debug logs are printed. I don't think some of them have any useful info. Please cleanup
> {noformat}
> 2016-05-20 14:37:24,963 DEBUG - [qtp1539768275-18:] ~ ==> AuthorizationFilter.doFilter (AtlasAuthorizationFilter:81)
> 2016-05-20 14:37:24,963 DEBUG - [qtp1539768275-18:] ~ /api/atlas/lineage/a8fcde45-7619-482a-832e-84cb84c71a2a/schema is a valid REST API request!!! (AtlasAuthorizationFilter:88)
> 2016-05-20 14:37:24,963 DEBUG - [qtp1539768275-18:] ~ ==> AtlasAuthorizationFilter getAtlasAction HTTP Method GET mapped to AtlasAction : READ (AtlasAuthorizationUtils:89)
> 2016-05-20 14:37:24,963 DEBUG - [qtp1539768275-18:] ~ ============================
> UserName ==>> admin
> Groups ==>> [ADMIN]
> URL :: http://localhost:21000/api/atlas/lineage/a8fcde45-7619-482a-832e-84cb84c71a2a/schema Action :: READ
> request.getServletPath() :: /api/atlas/lineage/a8fcde45-7619-482a-832e-84cb84c71a2a/schema
> ============================
>  (AtlasAuthorizationFilter:118)
> 2016-05-20 14:37:24,963 DEBUG - [qtp1539768275-18:] ~ getAtlasResourceType <=== for /api/atlas/lineage/a8fcde45-7619-482a-832e-84cb84c71a2a/schema (AtlasAuthorizationUtils:98)
> 2016-05-20 14:37:24,963 DEBUG - [qtp1539768275-18:] ~ getApi <=== from /api/atlas/lineage/a8fcde45-7619-482a-832e-84cb84c71a2a/schema (AtlasAuthorizationUtils:52)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ Extracted lineage/a8fcde45-7619-482a-832e-84cb84c71a2a/schema from path : /api/atlas/lineage/a8fcde45-7619-482a-832e-84cb84c71a2a/schema (AtlasAuthorizationUtils:45)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ Returning AtlasResources [ENTITY] for api lineage (AtlasAuthorizationUtils:133)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ getAtlasResource <=== This implementation will be changed for Resource level Authorization. (AtlasAuthorizationUtils:143)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ <== AtlasAccessRequestImpl-- Initializing AtlasAccessRequest (AtlasAccessRequest:41)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ <== SimpleAtlasAuthorizer isAccessAllowed (SimpleAtlasAuthorizer:116)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ isAccessAllowd(AtlasAccessRequest [resourceType=[ENTITY], resource=*, action=READ, user=admin, userGroups=[ADMIN], accessTime=null, clientIPAddress=null]) (SimpleAtlasAuthorizer:117)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ Checking for ::
> User :: admin
> Groups :: [ADMIN]
> Action :: READ
> Resource :: * (SimpleAtlasAuthorizer:125)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ checkAccess for Operation :: READ on Resource [ENTITY]:* (SimpleAtlasAuthorizer:139)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ <== SimpleAtlasAuthorizer checkAccess (SimpleAtlasAuthorizer:185)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ Now checking access for accessor : admin
> Resource Types : [ENTITY]
> Resource : *
> Map : {saqeeb={ENTITY=[*], TERM=[*], TYPE=[*], TAXONOMY=[*]}, admin={OPERATION=[*], ENTITY=[*], TERM=[*], TYPE=[*], TAXONOMY=[*]}, nixon={ENTITY=[*], TERM=[*], TYPE=[*], TAXONOMY=[*]}} (SimpleAtlasAuthorizer:186)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~
> Checking for resource : * in list : [*]
>  (SimpleAtlasAuthorizer:195)
> 2016-05-20 14:37:24,964 DEBUG - [qtp1539768275-18:] ~ <== SimpleAtlasAuthorizer isMatch (SimpleAtlasAuthorizer:272)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ <== SimpleAtlasAuthorizer resourceMatchHelper (SimpleAtlasAuthorizer:239)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ ==> SimpleAtlasAuthorizer resourceMatchHelper (SimpleAtlasAuthorizer:265)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ ==> SimpleAtlasAuthorizer isMatch(*): true (SimpleAtlasAuthorizer:315)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ Check for admin :: true (SimpleAtlasAuthorizer:210)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ ==> SimpleAtlasAuthorizer checkAccess (SimpleAtlasAuthorizer:211)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ ==> +SimpleAtlasAuthorizer isAccessAllowed = true (SimpleAtlasAuthorizer:176)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ Authorizer result :: true (AtlasAuthorizationFilter:134)
> 2016-05-20 14:37:24,965 DEBUG - [qtp1539768275-18:] ~ Access is allowed so forwarding the request!!! (AtlasAuthorizationFilter:138)
> {noformat}



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)