ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Bolke de Bruin (JIRA)" <j...@apache.org>
Subject [jira] [Comment Edited] (RANGER-827) Use system supplied mechanism to get users and groups on unix
Date Fri, 29 Jan 2016 10:04:39 GMT

    [ https://issues.apache.org/jira/browse/RANGER-827?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15123292#comment-15123292
] 

Bolke de Bruin edited comment on RANGER-827 at 1/29/16 10:03 AM:
-----------------------------------------------------------------

This version of the patch adds back file based synchronization. The extra option of "ranger.usersync.unix.backend"
defaults to "passwd" and thus the old behavior. If changed to "nss", the standard mechanism
is used.

I suggest removing this feature in the future.




was (Author: bolke):
This version of the patch add back file based synchronization. The extra option of "ranger.usersync.unix.backend"
defaults to "passwd" and thus the old behavior. If changed to "nss", the standard mechanism
is used.

I suggest removing this feature in the future.

> Use system supplied mechanism to get users and groups on unix
> -------------------------------------------------------------
>
>                 Key: RANGER-827
>                 URL: https://issues.apache.org/jira/browse/RANGER-827
>             Project: Ranger
>          Issue Type: Improvement
>          Components: usersync
>    Affects Versions: 0.5.1
>            Reporter: Bolke de Bruin
>              Labels: integration, pam, sssd, sync
>             Fix For: 0.6.0
>
>         Attachments: 0001-RANGER-827-Improve-unix-usersync.patch, 0002-RANGER-827-Improve-unix-usersync.patch,
usersync.patch
>
>
> The unix user sync currently reads /etc/passwd /etc/groups . This is often not a reflection
of users and groups available on a system especially when nsswitch is configured (eg. sssd,
ldap etc).
> Secondly in some cases groups will contain user names that are not returned with "getent
passwd", especially "external users" and it is required to add these using the group information.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message