You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ambari.apache.org by "Raghavender Rao Guruvannagari (JIRA)" <ji...@apache.org> on 2018/01/23 15:28:00 UTC
[jira] [Created] (AMBARI-22831) Ambari Hive view 2.0 will not show
Ranger Authorization if logged in AD Usernames are Uppercase
Raghavender Rao Guruvannagari created AMBARI-22831:
------------------------------------------------------
Summary: Ambari Hive view 2.0 will not show Ranger Authorization if logged in AD Usernames are Uppercase
Key: AMBARI-22831
URL: https://issues.apache.org/jira/browse/AMBARI-22831
Project: Ambari
Issue Type: Bug
Components: ambari-views
Affects Versions: 2.6.2
Reporter: Raghavender Rao Guruvannagari
In customer environment, all the AD users login with Uppercase and Ranger authorization is set considering Uppercase usernames.
When AD User(already has Admin privileges) access Ambari hive view 2.0, it errors out with below exception.
{code:java}
Message: User B0001234 does not have privilege to access the table authorization information
Error Code: NOT_OPERATOR_OR_ADMIN
{code}
-->Although user B0001234 is admin user.
{code:java}
$ curl -u admin:admin 'http://sec-lab1.raghav.com:8080/api/v1/users/b0001234?privileges/PrivilegeInfo/permission_name=AMBARI.ADMINISTRATOR|(privileges/PrivilegeInfo/permission_name.in(CLUSTER.ADMINISTRATOR,CLUSTER.OPERATOR)&privileges/PrivilegeInfo/cluster_name=seclab)'
{
"href" : "http://sec-lab1.raghav.com:8080/api/v1/users/b0001234?privileges/PrivilegeInfo/permission_name=AMBARI.ADMINISTRATOR|(privileges/PrivilegeInfo/permission_name.in(CLUSTER.ADMINISTRATOR,CLUSTER.OPERATOR)&privileges/PrivilegeInfo/cluster_name=seclab)",
"Users" : {
"user_name" : "b0001234"
},
"privileges" : [
{
"href" : "http://sec-lab1.raghav.com:8080/api/v1/users/b0001234/privileges/202",
"PrivilegeInfo" : {
"permission_name" : "AMBARI.ADMINISTRATOR",
"privilege_id" : 202,
"user_name" : "b0001234"
}
}
]
}
{code}
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)