-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72298/
-----------------------------------------------------------
Review request for ranger, deepak sharma, Kishor Gollapalliwar, Abhay Kulkarni, Mehul Parikh,
Nitin Galave, Ramesh Mani, Sailaja Polavarapu, and Velmurugan Periasamy.
Bugs: RANGER-785
https://issues.apache.org/jira/browse/RANGER-785
Repository: ranger
Description
-------
- added method RangerBasePlugin.setSuperUsersAndGroups(users, groups), which a plugin implementation
can call to register users and groups for whom all permissions should be allowed
- additional super-users and groups can be specified via service-configurations ranger.plugin.super.users,
ranger.plugin.service.groups
- Ranger plugin will allow all accesses from super users and groups
- Ranger plugin generates audit logs for such accesses - just as for regular users
Diffs
-----
agents-common/src/main/java/org/apache/ranger/plugin/policyengine/RangerPolicyEngine.java
460290345
agents-common/src/main/java/org/apache/ranger/plugin/policyengine/RangerPolicyEngineImpl.java
fefa4659f
agents-common/src/main/java/org/apache/ranger/plugin/service/RangerBasePlugin.java 32fbb0687
agents-common/src/test/java/org/apache/ranger/plugin/policyengine/TestPolicyEngine.java
4265b06e3
agents-common/src/test/resources/policyengine/test_policyengine_super_user_groups.json PRE-CREATION
Diff: https://reviews.apache.org/r/72298/diff/1/
Testing
-------
- added unit tests to cover the new feature
Thanks,
Madhan Neethiraj
|