ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Elliot West (Jira)" <j...@apache.org>
Subject [jira] [Commented] (RANGER-2964) creating policy with passing serviceType as id is failing
Date Tue, 22 Sep 2020 13:34:00 GMT

    [ https://issues.apache.org/jira/browse/RANGER-2964?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17200087#comment-17200087
] 

Elliot West commented on RANGER-2964:
-------------------------------------

I cannot reproduce on 2.0.0 but can on 2.1.0. Is the affects version correct [~deepakhuawei] ?

> creating policy with passing serviceType as id is failing
> ---------------------------------------------------------
>
>                 Key: RANGER-2964
>                 URL: https://issues.apache.org/jira/browse/RANGER-2964
>             Project: Ranger
>          Issue Type: Bug
>          Components: Ranger
>    Affects Versions: 2.0.0
>            Reporter: Deepak Sharma
>            Priority: Major
>
> we are creating ranger policies with "serviceType": "3", but it is failing due to following
error:
> curl -i  -k  -u admin:admin123 -H "Accept: application/json" -H "Content-Type: multipart/form-data"
-X POST -F 'file=@test.json' "https://<ranger_host>:6182/service/plugins/policies/importPoliciesFromFile?isOverride=true&serviceType=hive"
> {code}
> HTTP/1.1 100 Continue
> HTTP/1.1 400 Bad Request
> Set-Cookie: RANGERADMINSESSIONID=777A04534D04521931753508FB7681B5; Path=/; Secure; HttpOnly
> X-Frame-Options: DENY
> X-XSS-Protection: 1; mode=block
> Strict-Transport-Security: max-age=31536000 ; includeSubDomains
> Content-Security-Policy: default-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval';
connect-src 'self'; img-src 'self'; style-src 'self' 'unsafe-inline';font-src 'self'
> Cache-Control: no-cache, no-store, max-age=0, must-revalidate
> Pragma: no-cache
> Expires: 0
> X-Content-Type-Options: nosniff
> Content-Type: application/json
> Transfer-Encoding: chunked
> Date: Mon, 24 Aug 2020 06:24:34 GMT
> Connection: close
> Server: Apache Ranger
> {"statusCode":1,"msgDesc":"(0) Validation failure: error code[4009], reason[ Invalid
service type [3] provided for service [cm_hive]], field[service type], subfield[null], type[semantically
incorrect] "}  
> {code}
> *Policy content:*
> {code}
> {
>       "service": "cm_hive",
>       "name": "policy for db create",
>       "policyType": 0,
>       "policyPriority": 0,
>       "description": "",
>       "resourceSignature": "053c490e396ce264ff786bfe7e305c391cdee05b8a9e42e4fc969643119bdbb3",
>       "isAuditEnabled": true,
>       "resources": {
>         "database": {
>           "values": [
>             "org"
>           ],
>           "isExcludes": false,
>           "isRecursive": false
>         }
>       },
>       "policyItems": [
>         {
>           "accesses": [
>             {
>               "type": "select",
>               "isAllowed": true
>             },
>             {
>               "type": "update",
>               "isAllowed": true
>             },
>             {
>               "type": "create",
>               "isAllowed": true
>             },
>             {
>               "type": "drop",
>               "isAllowed": true
>             },
>             {
>               "type": "alter",
>               "isAllowed": true
>             },
>             {
>               "type": "index",
>               "isAllowed": true
>             },
>             {
>               "type": "lock",
>               "isAllowed": true
>             },
>             {
>               "type": "all",
>               "isAllowed": true
>             },
>             {
>               "type": "read",
>               "isAllowed": true
>             },
>             {
>               "type": "write",
>               "isAllowed": true
>             },
>             {
>               "type": "repladmin",
>               "isAllowed": true
>             },
>             {
>               "type": "serviceadmin",
>               "isAllowed": true
>             },
>             {
>               "type": "tempudfadmin",
>               "isAllowed": true
>             },
>             {
>               "type": "refresh",
>               "isAllowed": true
>             }
>           ],
>           "users": [
>             "hrt_21"
>           ],
>           "groups": [],
>           "roles": [],
>           "conditions": [],
>           "delegateAdmin": false
>         }
>       ],
>       "denyPolicyItems": [],
>       "allowExceptions": [],
>       "denyExceptions": [],
>       "dataMaskPolicyItems": [],
>       "rowFilterPolicyItems": [],
>       "serviceType": "3",
>       "options": {},
>       "validitySchedules": [],
>       "policyLabels": [],
>       "zoneName": "",
>       "isDenyAllElse": false,
>       "id": 416,
>       "guid": "d551b570-d81b-4df2-9b5e-0c405164e3ae",
>       "isEnabled": true,
>       "createdBy": "Admin",
>       "updatedBy": "Admin",
>       "version": 1
>     } 
> {code}
> though after specifying serviceType as "hive" policy creation goes through.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Mime
View raw message