[RANGER-74] Delegated admin can access all the policies through URL - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.4.0
Component/s: None
Labels:
None

Description

Steps to reproduce
1] Create an internal user and make the user delegated admin of any policy.
2] Login with that user and try to read different different policies from URL.

Expected Result : User should be allowed to read only policies for which user has delegated admin rights.

Actual Result : User can read all the policies from URL. Also User can see all policies in a repository as long as user has admin permission to any one policy in that repository (happens in both UI and API)

Attachments

Issue Links

links to

Patch code review

Activity

People

Assignee:: Velmurugan Periasamy

Reporter:: Velmurugan Periasamy

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 20/Sep/14 15:14

Updated:: 14/Nov/14 05:36

Resolved:: 23/Sep/14 02:27