You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "ASF GitHub Bot (JIRA)" <ji...@apache.org> on 2017/12/11 17:07:00 UTC

[jira] [Commented] (NIFIREG-64) Authorization Behavior Cleanup for Access Policies

    [ https://issues.apache.org/jira/browse/NIFIREG-64?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16286264#comment-16286264 ] 

ASF GitHub Bot commented on NIFIREG-64:
---------------------------------------

GitHub user kevdoran opened a pull request:

    https://github.com/apache/nifi-registry/pull/52

    NIFIREG-64 Updates Policy Authorization Behavior

    NIFIREG-64 Updates Policy Authorization Behavior
    
    - Changes authorization to /policies to be based on /polices resource
    - Changes per-bucket policies to inherit from base /buckets policy
    - Cleans up framework classes related to Authorization

You can merge this pull request into a Git repository by running:

    $ git pull https://github.com/kevdoran/nifi-registry NIFIREG-64

Alternatively you can review and apply these changes as the patch at:

    https://github.com/apache/nifi-registry/pull/52.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

    This closes #52
    
----
commit 38af7b4a8273444df07677a4430171793330d2e2
Author: Kevin Doran <kd...@gmail.com>
Date:   2017-12-11T17:02:23Z

    NIFIREG-64 Updates Policy Authorization Behavior
    
    - Changes authorization to /policies to be based on /polices resource
    - Changes per-bucket policies to inherit from base /buckets policy
    - Cleans up framework classes related to Authorization

----


> Authorization Behavior Cleanup for Access Policies
> --------------------------------------------------
>
>                 Key: NIFIREG-64
>                 URL: https://issues.apache.org/jira/browse/NIFIREG-64
>             Project: NiFi Registry
>          Issue Type: Improvement
>            Reporter: Kevin Doran
>            Assignee: Kevin Doran
>
> In NiFi Registry, change the following authorization behaviors:
> * policy creation should be gated by ("write", "/policies"), not access to the resource the policy points to (that is a local admin concept and should be additive)
> * access to individual buckets should inherit from /buckets, so that policies on /buckets/id are additive



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)