You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by Gautam Borad <gb...@gmail.com> on 2015/10/13 19:25:07 UTC

Review Request 39270: RANGER-697 : KeyAdmin role user should see only KMS related audit access logs in Audit tab

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/39270/
-----------------------------------------------------------

Review request for ranger, Alok Lal, Don Bosco Durai, Abhay Kulkarni, Madhan Neethiraj, Ramesh Mani, Selvamohan Neethiraj, and Velmurugan Periasamy.


Bugs: RANGER-697
    https://issues.apache.org/jira/browse/RANGER-697


Repository: ranger


Description
-------

Currently, All access audits are visible to keyadmin role user. 

Patch contains changes to restrict only KMS related audits to KeyAdmin role user in Audits Tab.


Diffs
-----

  security-admin/src/main/java/org/apache/ranger/rest/AssetREST.java 79cea02976606be641863f73ae20d4e14c184c92 

Diff: https://reviews.apache.org/r/39270/diff/


Testing
-------

Verified Audit logs using KeyAdmin role user, Admin role user as  well as for user role user. 
- Keyadmin role user : Only KMS Audit access logs were visible 
- Admin role user : All Audit access logs were visible
- User role user : All Audit access logs were visible


Thanks,

Gautam Borad

Re: Review Request 39270: RANGER-697 : KeyAdmin role user should see only KMS related audit access logs in Audit tab

Posted by Velmurugan Periasamy <vp...@hortonworks.com>.

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/39270/#review102564
-----------------------------------------------------------

Ship it!


Ship It!

- Velmurugan Periasamy


On Oct. 13, 2015, 5:25 p.m., Gautam Borad wrote:
> 
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/39270/
> -----------------------------------------------------------
> 
> (Updated Oct. 13, 2015, 5:25 p.m.)
> 
> 
> Review request for ranger, Alok Lal, Don Bosco Durai, Abhay Kulkarni, Madhan Neethiraj, Ramesh Mani, Selvamohan Neethiraj, and Velmurugan Periasamy.
> 
> 
> Bugs: RANGER-697
>     https://issues.apache.org/jira/browse/RANGER-697
> 
> 
> Repository: ranger
> 
> 
> Description
> -------
> 
> Currently, All access audits are visible to keyadmin role user. 
> 
> Patch contains changes to restrict only KMS related audits to KeyAdmin role user in Audits Tab.
> 
> 
> Diffs
> -----
> 
>   security-admin/src/main/java/org/apache/ranger/rest/AssetREST.java 79cea02976606be641863f73ae20d4e14c184c92 
> 
> Diff: https://reviews.apache.org/r/39270/diff/
> 
> 
> Testing
> -------
> 
> Verified Audit logs using KeyAdmin role user, Admin role user as  well as for user role user. 
> - Keyadmin role user : Only KMS Audit access logs were visible 
> - Admin role user : All Audit access logs were visible
> - User role user : All Audit access logs were visible
> 
> 
> Thanks,
> 
> Gautam Borad
> 
>