You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "rangerqa (JIRA)" <ji...@apache.org> on 2016/05/30 04:36:13 UTC

[jira] [Commented] (RANGER-691) Ranger Admin shouldn't expect users to be sync'ed for authentication

    [ https://issues.apache.org/jira/browse/RANGER-691?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15306218#comment-15306218 ] 

rangerqa commented on RANGER-691:
---------------------------------

{color:red}-1 overall{color}.  Here are the results of testing the latest attachment
  http://issues.apache.org/jira/secure/attachment/12806914/RANGER-691-1.patch
  against master revision c498b0f.

    {color:green}+1 @author{color}.  The patch does not contain any @author tags.

    {color:red}-1 tests included{color}.  The patch doesn't appear to include any new or modified tests.
                        Please justify why no new tests are needed for this patch.
                        Also please list what manual steps were performed to verify this patch.

    {color:green}+1 javac{color}.  The applied patch does not increase the total number of javac compiler warnings.

    {color:green}+1 javadoc{color}.  There were no new javadoc warning messages.

    +1 checkstyle.  The patch generated 0 code style errors.

    {color:green}+1 findbugs{color}.  The patch does not introduce any new Findbugs (version 2.0.3) warnings.

    {color:green}+1 release audit{color}.  The applied patch does not increase the total number of release audit warnings.

    {color:green}+1 core tests{color}.  The patch passed unit tests in .

Test results: https://builds.apache.org/job/PreCommit-RANGER-Build/222//testReport/
Console output: https://builds.apache.org/job/PreCommit-RANGER-Build/222//console

This message is automatically generated.

> Ranger Admin shouldn't expect users to be sync'ed for authentication
> --------------------------------------------------------------------
>
>                 Key: RANGER-691
>                 URL: https://issues.apache.org/jira/browse/RANGER-691
>             Project: Ranger
>          Issue Type: Improvement
>    Affects Versions: 0.5.1
>            Reporter: Don Bosco Durai
>            Assignee: Pradeep Agrawal
>             Fix For: 0.6.0
>
>         Attachments: RANGER-691-1.patch
>
>
> Currently, if admin user is in in LDAP, but not synchronized, then RangerAdmin will not allow the user to login.
> I feel, we should allow login and get the groups for the user in real-time from the LDAP. This way, we are not enforcing all users to be sync'ed. In some cases, it might be possible only to sync groups because of size or other challenges.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)