You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "ASF GitHub Bot (JIRA)" <ji...@apache.org> on 2017/12/11 17:07:00 UTC
[jira] [Commented] (NIFIREG-64) Authorization Behavior Cleanup for
Access Policies
[ https://issues.apache.org/jira/browse/NIFIREG-64?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16286264#comment-16286264 ]
ASF GitHub Bot commented on NIFIREG-64:
---------------------------------------
GitHub user kevdoran opened a pull request:
https://github.com/apache/nifi-registry/pull/52
NIFIREG-64 Updates Policy Authorization Behavior
NIFIREG-64 Updates Policy Authorization Behavior
- Changes authorization to /policies to be based on /polices resource
- Changes per-bucket policies to inherit from base /buckets policy
- Cleans up framework classes related to Authorization
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/kevdoran/nifi-registry NIFIREG-64
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/nifi-registry/pull/52.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #52
----
commit 38af7b4a8273444df07677a4430171793330d2e2
Author: Kevin Doran <kd...@gmail.com>
Date: 2017-12-11T17:02:23Z
NIFIREG-64 Updates Policy Authorization Behavior
- Changes authorization to /policies to be based on /polices resource
- Changes per-bucket policies to inherit from base /buckets policy
- Cleans up framework classes related to Authorization
----
> Authorization Behavior Cleanup for Access Policies
> --------------------------------------------------
>
> Key: NIFIREG-64
> URL: https://issues.apache.org/jira/browse/NIFIREG-64
> Project: NiFi Registry
> Issue Type: Improvement
> Reporter: Kevin Doran
> Assignee: Kevin Doran
>
> In NiFi Registry, change the following authorization behaviors:
> * policy creation should be gated by ("write", "/policies"), not access to the resource the policy points to (that is a local admin concept and should be additive)
> * access to individual buckets should inherit from /buckets, so that policies on /buckets/id are additive
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)