sentry-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Gregory Chanan (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SENTRY-190) Support for getting set of roles from ProviderBackend
Date Mon, 05 May 2014 20:11:15 GMT

    [ https://issues.apache.org/jira/browse/SENTRY-190?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13989919#comment-13989919
] 

Gregory Chanan commented on SENTRY-190:
---------------------------------------

review request: https://reviews.apache.org/r/21045/

> Support for getting set of roles from ProviderBackend
> -----------------------------------------------------
>
>                 Key: SENTRY-190
>                 URL: https://issues.apache.org/jira/browse/SENTRY-190
>             Project: Sentry
>          Issue Type: Bug
>    Affects Versions: 1.3.0
>            Reporter: Gregory Chanan
>            Assignee: Gregory Chanan
>             Fix For: 1.4.0
>
>         Attachments: SENTRY-190.patch
>
>
> I think it makes more sense for document-level security in Solr to use roles as the tokens
rather than groups.  This should mean less frequent reindexing, because the roles can be modified
via the sentry configuration, rather than the documents themselves.
> To support this, the SolrAuthzBinding needs to have access to the roles associated with
the groups that it gets from the GroupMappingService.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message