You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by "sooyeon shin (Jira)" <ji...@apache.org> on 2021/01/29 10:32:01 UTC
[jira] [Updated] (RANGER-3142) Access control based on groups not
working for presto plugin
[ https://issues.apache.org/jira/browse/RANGER-3142?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
sooyeon shin updated RANGER-3142:
---------------------------------
Attachment: image-2021-01-29-19-30-59-510.png
> Access control based on groups not working for presto plugin
> -------------------------------------------------------------
>
> Key: RANGER-3142
> URL: https://issues.apache.org/jira/browse/RANGER-3142
> Project: Ranger
> Issue Type: Bug
> Components: plugins
> Affects Versions: 2.1.0
> Environment: ranger-2.1.0-presto-plugin.tar.gz
> presto-server-347.tar.gz
> Reporter: Anchal Agarwal
> Assignee: Pradeep Agrawal
> Priority: Major
> Attachments: image-2021-01-29-19-30-59-510.png, image-2021-01-29-19-31-16-496.png, image-2021-01-29-19-31-20-791.png, image-2021-01-29-19-31-28-126.png, image-2021-01-29-19-31-38-949.png, image-2021-01-29-19-31-47-136.png
>
>
> I'm using ranger-2.1.0 for access control in prestosql-347.
> A policy with user list in 'allow conditions' works i.e. if I connect to presto with a user in the allowed list, my query returns the expected results.
> But instead of users, if I use group in the policy and try accessing presto with a user belonging to that group, then I'm denied access.
> {code:java}
> %presto
> show tables in default
> Query failed (#20210106_032741_00000_dddsy): Access Denied: Cannot access catalog hive
> {code}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)