Uploaded image for project: 'Ranger'
  1. Ranger
  2. RANGER-1460

Hdfs authorizer uses hadoop-acls to allow access with one allowing tag policy and no resource policy

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 0.7.0
    • Fix Version/s: 1.0.0, 0.7.1
    • Component/s: plugins
    • Labels:
      None

      Description

      If there is one tag policy which allows access to HDFS resource and if there are no resource policies for HDFS, then authorization falls back to hadoop acls. In such cases, Ranger authorizer should allow access to the resource without falling back to hadoop acls, as tag policy has allowed access and there is no resource policy.

        Attachments

          Activity

            People

            • Assignee:
              abhayk Abhay Kulkarni
              Reporter:
              deepakhuawei Deepak Sharma
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: