[RANGER-2474] Policy version and details in access audits wrong when deny condition added to policy - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 2.0.0
Fix Version/s: 2.0.0
Component/s: Ranger
Labels:
None

Description

Scenario:
Create a ranger hive policy for a test table for select access - version1
Perform select - operation successful (done for impala)
Validate access audits - policy version is 1, clicking on policyid shows details of policy at version1
Edit the policy to include and an additional policy item under allow or a new condition under allow exception or deny exception (not under deny)
Perform operation
Validate access audits - policy version is 2, clicking on policyid shows details of policy at version2
Edit the policy to include a deny condition
Perform operation
Validate access audits - policy version is 1, clicking on policyid shows details of policy at version1 though enforcement happens as per policy version3

Note - Versioning is back to normal when deny condition is removed

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

0001-RANGER-2474-Policy-version-and-details-in-access-aud.patch
18/Jun/19 06:05
2 kB
Ramesh Mani

Activity

People

Assignee:: Ramesh Mani

Reporter:: suja s

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 18/Jun/19 03:45

Updated:: 19/Jun/19 18:26

Resolved:: 18/Jun/19 17:47