[RANGER-1460] Hdfs authorizer uses hadoop-acls to allow access with one allowing tag policy and no resource policy - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.7.0
Fix Version/s: 1.0.0, 0.7.1
Component/s: plugins
Labels:
None

Description

If there is one tag policy which allows access to HDFS resource and if there are no resource policies for HDFS, then authorization falls back to hadoop acls. In such cases, Ranger authorizer should allow access to the resource without falling back to hadoop acls, as tag policy has allowed access and there is no resource policy.

Attachments

Activity

People

Assignee:: Abhay Kulkarni

Reporter:: Deepak Sharma

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 15/Mar/17 22:13

Updated:: 15/Mar/17 23:30

Resolved:: 15/Mar/17 23:30