[SENTRY-777] SentryServiceIntegrationBase#after() should be run under client subject - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.5.0
Fix Version/s: 1.6.0
Component/s: None
Labels:
None

Description

  @After
  public void after() throws Exception {
        if (client != null) {
          Set<TSentryRole> tRoles = client.listRoles(ADMIN_USER);
          if (tRoles != null) {
            for (TSentryRole tRole : tRoles) {
              client.dropRole(ADMIN_USER, tRole.getRoleName());
            }
          }
          client.close();
        }
        policyFilePath.delete();
  }

client in after() isn't run under client subject, if client need client subject, such as in Kerberos mode, it may throw an exception.
policyFilePath.delete(); may not execute if the client throws an exception when it does operations like clean db or close, there should be a try-catch-finally statement.

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SENTRY-777.004.patch
30/Jun/15 02:08
12 kB
Dapeng Sun
SENTRY-777.003.patch
23/Jun/15 11:04
12 kB
Dapeng Sun
SENTRY-777.002.patch
23/Jun/15 11:02
12 kB
Dapeng Sun
SENTRY-777.001.patch
23/Jun/15 10:57
12 kB
Dapeng Sun

Issue Links

links to

https://reviews.apache.org/r/35817/

Activity

People

Assignee:: Dapeng Sun

Reporter:: Dapeng Sun

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 23/Jun/15 08:13

Updated:: 30/Jun/15 02:14

Resolved:: 30/Jun/15 02:13