You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by Fatima Khan <fa...@gmail.com> on 2017/09/30 10:14:25 UTC

Review Request 61728: RANGER-1727 : Restrict password change request of external users

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/61728/
-----------------------------------------------------------

Review request for ranger, Ankita Sinha, Don Bosco Durai, Gautam Borad, Abhay Kulkarni, Madhan Neethiraj, Pradeep Agrawal, Ramesh Mani, Selvamohan Neethiraj, Sailaja Polavarapu, and Velmurugan Periasamy.


Bugs: RANGER-1727
    https://issues.apache.org/jira/browse/RANGER-1727


Repository: ranger


Description
-------

Restricted the external user's password change request from ranger api
Problem Statement:
External users password is authenticated by their sync source and ranger database doesnt have the external users password so there is no point in giving the external user access to change password


Diffs
-----

  security-admin/src/main/java/org/apache/ranger/biz/UserMgr.java c1145e7 


Diff: https://reviews.apache.org/r/61728/diff/1/


Testing
-------

1.Verified that external users are not allowed to change their password with ranger api


Thanks,

Fatima Khan