You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by Sailaja Polavarapu <sp...@hortonworks.com> on 2019/08/17 23:08:23 UTC

Review Request 71305: RANGER-2538: Ranger policy import calls via knox trusted proxy failing

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/71305/
-----------------------------------------------------------

Review request for ranger.


Bugs: RANGER-2538
    https://issues.apache.org/jira/browse/RANGER-2538


Repository: ranger


Description
-------

Added code in ranger web filter to wait till all the data is received and then respond with 401. This logic is added only for kerberos authentication case and when response is unauthorize and trusted proxy is enabled.


Diffs
-----

  security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKrbFilter.java d73ced1a8 


Diff: https://reviews.apache.org/r/71305/diff/1/


Testing
-------

1. Patched a test cluster and verified with kerberos authentication and with large file size for post. Test both with curl commands and UI.
2. Also verified some regression tests are successful.


Thanks,

Sailaja Polavarapu

Re: Review Request 71305: RANGER-2538: Ranger policy import calls via knox trusted proxy failing

Posted by Madhan Neethiraj <ma...@apache.org>.

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/71305/#review217261
-----------------------------------------------------------


Ship it!




Ship It!

- Madhan Neethiraj


On Aug. 17, 2019, 11:08 p.m., Sailaja Polavarapu wrote:
> 
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/71305/
> -----------------------------------------------------------
> 
> (Updated Aug. 17, 2019, 11:08 p.m.)
> 
> 
> Review request for ranger.
> 
> 
> Bugs: RANGER-2538
>     https://issues.apache.org/jira/browse/RANGER-2538
> 
> 
> Repository: ranger
> 
> 
> Description
> -------
> 
> Added code in ranger web filter to wait till all the data is received and then respond with 401. This logic is added only for kerberos authentication case and when response is unauthorize and trusted proxy is enabled.
> 
> 
> Diffs
> -----
> 
>   security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKrbFilter.java d73ced1a8 
> 
> 
> Diff: https://reviews.apache.org/r/71305/diff/1/
> 
> 
> Testing
> -------
> 
> 1. Patched a test cluster and verified with kerberos authentication and with large file size for post. Test both with curl commands and UI.
> 2. Also verified some regression tests are successful.
> 
> 
> Thanks,
> 
> Sailaja Polavarapu
> 
>