Details
-
Bug
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
Description
STEPS TO REPRODUCE:
Update default “all - path” policy in cm_hdfs service. Add a deny condition for {USER} to read,write,execute permissions. With this policy all users will be denied to access hdfs locations.
Now, add a policy for user "u1" to get "RWX" permissions on path "/testpath" recursively. Enable ovverride for this policy.
Perform kinit by user u1 and dp hdfs operations.
hdfs dfs -ls /testpath
The access is denied by default "all - path" policy.