ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mateen Mansoori <ma3naus...@gmail.com>
Subject Re: Review Request 71578: RANGER-2591 : Need changes for usersync(unix/ldap) to support HA without load balancer
Date Wed, 09 Oct 2019 06:30:42 GMT

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/71578/
-----------------------------------------------------------

(Updated Oct. 9, 2019, 6:30 a.m.)


Review request for ranger, Gautam Borad, Abhay Kulkarni, Madhan Neethiraj, Mehul Parikh, Nikhil
P, Pradeep Agrawal, and Velmurugan Periasamy.


Changes
-------

Patch were not getting applied on latest apache master, So that applied manually. There are
no any changes in logic.
Build succeeded with latest mvn version.

Thanks,


Bugs: RANGER-2591
    https://issues.apache.org/jira/browse/RANGER-2591


Repository: ranger


Description
-------

Need changes for usersync(unix/ldap) to support HA without load balancer.
- Ranger usersync should be able to sync users / groups when Ranger Admin is in HA (even without
having LB)
- User needs to define Ranger URL values in comma separated format in 'ranger-ugsync-site.xml'
config file for 'ranger.usersync.policymanager.baseURL' name or property.


Diffs (updated)
-----

  agents-common/src/main/java/org/apache/ranger/plugin/util/RangerRESTClient.java 7d30b89

  ugsync/src/main/java/org/apache/ranger/ldapusersync/process/LdapPolicyMgrUserGroupBuilder.java
224a600 
  ugsync/src/main/java/org/apache/ranger/unixusersync/process/PolicyMgrUserGroupBuilder.java
52579a3 
  ugsync/src/main/java/org/apache/ranger/unixusersync/process/RangerUgSyncRESTClient.java
PRE-CREATION 


Diff: https://reviews.apache.org/r/71578/diff/3/

Changes: https://reviews.apache.org/r/71578/diff/2-3/


Testing
-------

->BUILD SUCCESS

1.User sync verified in simple, kerberose and SSL enabled environment.
2.Delta sync is verified for UNIX source.
3.Authentication is verified for UNIX source and LDAP source.
4.Checked user is able to login from both the Admin UI.
5.Checked Authentication after changing password of UNIX user.


Thanks,

Mateen Mansoori


Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message