This is an automated email from the ASF dual-hosted git repository.
pradeep pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/ranger.git
The following commit(s) were added to refs/heads/master by this push:
new e5c7ee7 Revert "RANGER-3590 : User with Auditor role in security zone
can change a policy's name and description"
e5c7ee7 is described below
commit e5c7ee70239be8e6a1df877deac3dded4ab7fc29
Author: pradeep <prad...@apache.org>
AuthorDate: Tue Jan 25 20:12:32 2022 +0530
Revert "RANGER-3590 : User with Auditor role in security zone can change a
policy's name and description"
This reverts commit 09ec4d90fbd9afa643eaeca29765563a00866257.
---
security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git
a/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java
b/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java
index 3e10e78..098188e 100644
--- a/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java
+++ b/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java
@@ -3551,9 +3551,7 @@ public class ServiceREST {
//for zone policy create /update / delete
if(!StringUtils.isEmpty(policy.getZoneName()) &&
serviceMgr.isZoneAdmin(policy.getZoneName())){
isAllowed = true;
- }else if(!StringUtils.isEmpty(policy.getZoneName()) &&
serviceMgr.isZoneAuditor(policy.getZoneName())){
- isAllowed = false;
- }else {
+ }else{
isAllowed = hasAdminAccess(policy, userName,
userGroups);
}
