sentry-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Shreepadma Venugopalan (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SENTRY-19) Add support for solr index-level authorization
Date Mon, 07 Oct 2013 18:35:44 GMT

    [ https://issues.apache.org/jira/browse/SENTRY-19?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13788412#comment-13788412
] 

Shreepadma Venugopalan commented on SENTRY-19:
----------------------------------------------

Some comments on the proposal,

* Today, Sentry doesn't provide support for built-in superusers. However, superusers can be
defined in the policy file. Looks like Solr requires solr user to be defined as a superuser
in the policy file.

* Will the first version support users = collection=index1->action=Query and a later version
support users = namespace = * -> collection = index1 -> shard = * -> action = Query?

* It will be useful to put together a table of which operations require which privileges along
with how privileges are inherited. Its mentioned as future work, but probably worth adding
it so that the model is clear.

> Add support for solr index-level authorization
> ----------------------------------------------
>
>                 Key: SENTRY-19
>                 URL: https://issues.apache.org/jira/browse/SENTRY-19
>             Project: Sentry
>          Issue Type: New Feature
>            Reporter: Gregory Chanan
>            Assignee: Gregory Chanan
>         Attachments: SolrSentryIndexLevelSecurity.pdf
>
>
> I want to use sentry in order to build index-level authorization controls for solr.
> I'll post a design document to this JIRA next week.



--
This message was sent by Atlassian JIRA
(v6.1#6144)

Mime
View raw message