You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@kylin.apache.org by "peng.jianhua (JIRA)" <ji...@apache.org> on 2017/12/04 09:44:00 UTC
[jira] [Commented] (KYLIN-3074) Change cube access to project
access in ExternalAclProvider.java
[ https://issues.apache.org/jira/browse/KYLIN-3074?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16276534#comment-16276534 ]
peng.jianhua commented on KYLIN-3074:
-------------------------------------
Hi [~Shaofengshi], please review and merge the issue to v2.2.0. I will merge https://issues.apache.org/jira/browse/RANGER-1672 after the issue was merged into v2.2.0. Thanks.
> Change cube access to project access in ExternalAclProvider.java
> ----------------------------------------------------------------
>
> Key: KYLIN-3074
> URL: https://issues.apache.org/jira/browse/KYLIN-3074
> Project: Kylin
> Issue Type: Bug
> Affects Versions: v2.2.0
> Reporter: peng.jianhua
> Assignee: peng.jianhua
> Attachments: 0001-KYLIN-3074-branch-2.2.x.patch
>
>
> According to ranger recommendations, the following aspects were modified:
> 1.Cube ACL is removed since v2.2.0, we shuold modify the aclPermission name, no longer cube access.
> 2.Remove unnecessary requests. For example, get cube and model access entities, it will be recorded in the ranger audit log.
> 3.Remove unnecessary permission verification. Kylin currently used four permissions(ADMINISTRATION,MANAGEMENT,OPERATION,READ), other permissions do not need to be verified. Every time permission verification will be recorded in the ranger audit log.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)