ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Abhay Kulkarni <akulka...@hortonworks.com>
Subject Re: Review Request 55659: Ranger enhancement to support authorization of namespace operations
Date Mon, 23 Jan 2017 18:56:29 GMT

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/55659/
-----------------------------------------------------------

(Updated Jan. 23, 2017, 6:56 p.m.)


Review request for ranger and Madhan Neethiraj.


Changes
-------

Addressed review comments


Bugs: RANGER-1314
    https://issues.apache.org/jira/browse/RANGER-1314


Repository: ranger


Description
-------

Currently namespace operations, like 'clone snapshot', require the user to have global 'admin'
privilege. Ranger authorizer should be enhanced to allow these operations for users haivng
'admin' privilege on specific namespaces.


Diffs (updated)
-----

  hbase-agent/src/main/java/org/apache/ranger/authorization/hbase/RangerAuthorizationCoprocessor.java
cc61a83 
  hbase-agent/src/test/java/org/apache/ranger/authorization/hbase/HBaseRangerAuthorizationTest.java
8fe6284 
  hbase-agent/src/test/resources/hbase-policies.json 30088c6 

Diff: https://reviews.apache.org/r/55659/diff/


Testing
-------

Wrote and ran clone_snapshot unit tests successfully


Thanks,

Abhay Kulkarni


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message