[HDDS-5262] Improve CLI volume/bucket/key removeacl response - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 1.2.0
Fix Version/s: None
Component/s: Ozone CLI
Labels:
None

Description

Before this patch, volume removeacl (almost) always returns success message, regardless of whether an actual ACL entry is removed or not:

bash-4.2$ ozone sh volume getacl vol2
[ {
  "type" : "USER",
  "name" : "testuser/scm@EXAMPLE.COM",
  "aclScope" : "ACCESS",
  "aclList" : [ "ALL" ]
}, {
  "type" : "GROUP",
  "name" : "root",
  "aclScope" : "ACCESS",
  "aclList" : [ "ALL" ]
} ]
bash-4.2$ ozone sh volume removeacl -a=user:somenonexistentuser:a vol2
ACL user:somenonexistentuser:a[ACCESS] removed successfully.
bash-4.2$ ozone sh volume getacl vol2
[ {
  "type" : "USER",
  "name" : "testuser/scm@EXAMPLE.COM",
  "aclScope" : "ACCESS",
  "aclList" : [ "ALL" ]
}, {
  "type" : "GROUP",
  "name" : "root",
  "aclScope" : "ACCESS",
  "aclList" : [ "ALL" ]
} ]

This isn't particularly useful since owners/admins still have to use getacl to check if an ACL is indeed removed via CLI. It makes more sense to just print out the ACL status after the operation.

Attachments

Activity

People

Assignee:: Siyao Meng

Reporter:: Siyao Meng

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 21/May/21 18:17

Updated:: 21/May/21 18:17