You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "Abhay Kulkarni (Jira)" <ji...@apache.org> on 2023/02/13 22:38:00 UTC

[jira] [Comment Edited] (RANGER-3999) Implement more efficient way to handle _any access authorization

    [ https://issues.apache.org/jira/browse/RANGER-3999?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17644065#comment-17644065 ] 

Abhay Kulkarni edited comment on RANGER-3999 at 2/13/23 10:37 PM:
------------------------------------------------------------------

Commit details:

master:

[https://github.com/apache/ranger/commit/56d5bf9173dc2c6d04692a07e67eace5e5d98ed4]

 

Additional review:

[https://reviews.apache.org/r/74304/]

 

and commit detail:

[https://github.com/apache/ranger/commit/7a7215f67e7db807ee0401f2b41d7bb871a248f5]

 

 


was (Author: abhayk):
Commit details:

master:

https://github.com/apache/ranger/commit/56d5bf9173dc2c6d04692a07e67eace5e5d98ed4

> Implement more efficient way to handle _any access authorization
> ----------------------------------------------------------------
>
>                 Key: RANGER-3999
>                 URL: https://issues.apache.org/jira/browse/RANGER-3999
>             Project: Ranger
>          Issue Type: Improvement
>          Components: Ranger
>            Reporter: Abhay
>            Assignee: Abhay Kulkarni
>            Priority: Major
>
> If a user-initiated operation requires checking if more than one permission is granted, then currently, each permission requires a call to internal Policy Engine API for the same accessed resource. This leads to many repetitive computations which may be avoided if the policy engine API supports multiple permissions. In that case, optimization may be achieved by pushing authorization for multiple permissions down to the lowest possible level.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)