ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bhavik patel <bhavikpatel...@gmail.com>
Subject Review Request 70616: RANGER-2347 : Restrict capabilities of security zone administrator and auditor
Date Thu, 09 May 2019 12:52:33 GMT

This is an automatically generated e-mail. To reply, visit:

Review request for ranger, Ankita Sinha, Don Bosco Durai, Gautam Borad, Abhay Kulkarni, Madhan
Neethiraj, Oliver Szabo, Pradeep Agrawal, Ramesh Mani, Selvamohan Neethiraj, Sailaja Polavarapu,
and Velmurugan Periasamy.

Bugs: RANGER-2347

Repository: ranger


Zone Admin and zone auditor can see their own zone specific audit access logs.


  security-admin/src/main/java/org/apache/ranger/biz/AssetMgr.java 41b42ca 
  security-admin/src/main/java/org/apache/ranger/biz/ServiceMgr.java 429c450 
  security-admin/src/main/java/org/apache/ranger/rest/AssetREST.java 703d30b 
  security-admin/src/main/java/org/apache/ranger/rest/SecurityZoneREST.java f0909ab 
  security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java c4ccee9 
  security-admin/src/main/java/org/apache/ranger/solr/SolrAccessAuditsService.java 9be2ef4

Diff: https://reviews.apache.org/r/70616/diff/1/


Zone admin and zone auditor will only be able to see thier zone associated logs.
Functioanlity will be same as before for rest of all users.


bhavik patel

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message