[RANGER-4786] Ranger override policy is not working - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: None
Component/s: Ranger
Labels:
None

Description

STEPS TO REPRODUCE:
Update default “all - path” policy in cm_hdfs service. Add a deny condition for {USER} to read,write,execute permissions. With this policy all users will be denied to access hdfs locations.

Now, add a policy for user "u1" to get "RWX" permissions on path "/testpath" recursively. Enable ovverride for this policy.

Perform kinit by user u1 and dp hdfs operations.

hdfs dfs -ls /testpath

The access is denied by default "all - path" policy.

Attachments

Activity

People

Assignee:: Abhay Kulkarni

Reporter:: Abhay

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 30/Apr/24 01:08

Updated:: 30/Apr/24 21:25

Resolved:: 30/Apr/24 21:25