[RANGER-3155] Roles are not accessible for Admin User through REST API - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 3.0.0
Fix Version/s: 3.0.0
Component/s: Ranger
Labels:
None

Description

This issue is introduced by RANGER-3135.

Following is current observation :
I tried to access GET API http://localhost:6080/service/roles/roles/name/role1 with admin user and it does not return roles which already exist, whereas select * from x_role returns two roles. ie. role1, role2.

API returns following response :

<vxResponse>
    <msgDesc>Role with name: role1 does not exist</msgDesc>
    <statusCode>1</statusCode>
</vxResponse>

With admin user it shows same response regardless of role's existence.

=================================================================

Resolution :
Admin user should get roles when accessed via REST API. This JIRA should also focus on providing fix for RANGER-3135 where GET API /roles/name/{name} should provide proper message in case of the role does not exist. In case of non-admin user, it should deny access to roles.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

screenshot-3.png
25/Jan/21 08:28
16 kB
rujia
screenshot-2.png
25/Jan/21 08:25
14 kB
rujia
screenshot-1.png
25/Jan/21 08:20
35 kB
rujia

Issue Links

duplicates

RANGER-3154 Admin user cann't get role info throught rest API

Open

is caused by

RANGER-3135 Ranger always ponit out "User does not have permission for this operation" when user try to query a none-exist role

Reopened

links to

Apache Review Request

Activity

People

Assignee:: Mahesh Hanumant Bandal

Reporter:: Mahesh Hanumant Bandal

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 21/Jan/21 11:25

Updated:: 22/Jul/21 07:12