Uploaded image for project: 'Ranger'
  1. Ranger
  2. RANGER-2451

Atlas plugin is not working when security zone is created for Atlas service in Ranger Admin.

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 2.0.0
    • plugins
    • None

    Description

         Description: 
      Steps - 
       1.Go to security zone page in Ranger UI.
       2.Create a security zone for atlas services with resources.

      type-category resources
type-category : *
type : *

entity-type resources
entity-type : *
entity-classification : *
entity : *

atlas-service resources
atlas-service : *, atlas-service

relationship-type resources
end-one-entity-classification : *
end-two-entity : *
end-two-entity-type : *
relationship-type : *
end-two-entity-classification : *
end-one-entity-type : *
end-one-entity : *

      3.Save the security zone.
       4.Go to Atlas UI and login.
       5.Check the application.logs of Atlas.

      2019-05-27 12:26:55,508 ERROR - [pool-2-thread-7 - 01480084-282d-4686-8220-84aa8d233252:] ~ Error handling a request: e361746af898b07c (ExceptionMapperUtil:32)
java.lang.ClassCastException: java.util.Collections$EmptySet cannot be cast to java.util.List
        at org.apache.ranger.plugin.policyengine.RangerPolicyEngineImpl.convertFromSingleResource(RangerPolicyEngineImpl.java:1768)
        at org.apache.ranger.plugin.policyengine.RangerPolicyEngineImpl.convertFromAccessResource(RangerPolicyEngineImpl.java:1757)
        at org.apache.ranger.plugin.policyengine.RangerPolicyEngineImpl.getMatchedZoneName(RangerPolicyEngineImpl.java:1636)
        at org.apache.ranger.plugin.policyengine.RangerPolicyEngineImpl.zoneAwareAccessEvaluationWithNoAudit(RangerPolicyEngineImpl.java:1240)
        at org.apache.ranger.plugin.policyengine.RangerPolicyEngineImpl.evaluatePolicies(RangerPolicyEngineImpl.java:463)
        at org.apache.ranger.plugin.service.RangerBasePlugin.isAccessAllowed(RangerBasePlugin.java:450)
        at org.apache.ranger.authorization.atlas.authorizer.RangerAtlasAuthorizer.checkAccess(RangerAtlasAuthorizer.java:415)
        at org.apache.ranger.authorization.atlas.authorizer.RangerAtlasAuthorizer.isAccessAllowed(RangerAtlasAuthorizer.java:378)
        at org.apache.ranger.authorization.atlas.authorizer.RangerAtlasAuthorizer.isAccessAllowed(RangerAtlasAuthorizer.java:148)
        at org.apache.ranger.authorization.atlas.authorizer.RangerAtlasAuthorizer.isAccessAllowed(RangerAtlasAuthorizer.java:145)
        at org.apache.atlas.authorize.AtlasAuthorizationUtils.isAccessAllowed(AtlasAuthorizationUtils.java:127)

      Attachments

        1. RANGER-2451.patch
          2 kB
          Nixon Rodrigues

        Issue Links

          links to

          Web Link Review Request

          Activity

            People

              nixon Nixon Rodrigues
              nixon Nixon Rodrigues
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: