[HDDS-4593] Refine IAccessAuthorizer interface to do recursive ACL check on a path - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.1.0
Component/s: None
Labels:
- pull-request-available

Description

OM server is presently doing ACL check access for each path separately. This will become too costly RPC calls assume if user performs recursive delete on a path where there are millions of sub-directories under this path.

The idea/proposal is to refine #checkAccess interface by giving "recursiveDelete" hint and make only one single call and the implementation classes(native or external entity) can do recursive logic in an optimized way.

IAccessAuthorizer#checkAccess(IOzoneObj ozoneObject, RequestContext context)

public class RequestContext {
     …...
     private final boolean recursiveDelete; // add new attribute
}

Attachments

Issue Links

is related to

HDDS-2939 Ozone FS namespace

Resolved

links to

GitHub Pull Request #1790

Activity

People

Assignee:: Rakesh Radhakrishnan

Reporter:: Rakesh Radhakrishnan

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 15/Dec/20 18:04

Updated:: 20/Jan/21 13:12

Resolved:: 20/Jan/21 13:12