[RANGER-2650] Public group should not be given access to all kafka resources in default ranger policies - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.1.0
Component/s: Ranger
Labels:
None

Description

If authentication type is simple, we do add public group to default policy item. Any user setting up Ranger in simple mode and after that enabling Kerberos on that cluster will have this extra policy providing public group all permissions on Kafka.

We shouldn't be adding public group to default policies neither in simple mode nor in kerberos.

Attachments

Issue Links

links to

Review Request

Activity

People

Assignee:: Dhaval Shah

Reporter:: Dhaval Shah

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 21/Nov/19 07:28

Updated:: 04/Dec/19 05:47

Resolved:: 04/Dec/19 05:47