You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@sentry.apache.org by "Tristan Stevens (JIRA)" <ji...@apache.org> on 2019/02/13 18:02:00 UTC
[jira] [Commented] (SENTRY-2482) Sentry Solr to support
multi-attribute document level security
[ https://issues.apache.org/jira/browse/SENTRY-2482?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16767415#comment-16767415 ]
Tristan Stevens commented on SENTRY-2482:
-----------------------------------------
At [~kkalyan]'s request, splitting this into the Conjuntive Match capability (SENTRY-2495) and then the multi-field attributed-based model (SENTRY-2496).
> Sentry Solr to support multi-attribute document level security
> --------------------------------------------------------------
>
> Key: SENTRY-2482
> URL: https://issues.apache.org/jira/browse/SENTRY-2482
> Project: Sentry
> Issue Type: Improvement
> Components: Solr Plugin
> Reporter: Tristan Stevens
> Assignee: Arjun Mishra
> Priority: Major
> Attachments: SENTRY-2482 Solr - Design Documentation.pdf, SENTRY-2482.patch.6, SENTRY-2482.patch.7, SENTRY-2482.patch.8, SENTRY-2482.patch.9, SENTRY-2482.patch10
>
>
> This is an improvement request to cover enhanced document level security for the Solr document level controls, specifically to cover:
> # Security controls against multiple fields
> # Filters based on user attributes as well as just Sentry roles
> # Different security predicates (AND, LessThan, GreaterThan - in addition to the currently supported OR)
> # Pluggable user attribute source ahead of Sentry enhancements.
> # Sample LDAP user attribute source
> The ambition is this will be a precursor to full complex predicate support being served by Sentry ABAC roadmap.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)