[ranger] 01/03: Merge branch 'master' into RANGER-3923

[madhan]

This is an automated email from the ASF dual-hosted git repository.

madhan pushed a commit to branch RANGER-3923
in repository https://gitbox.apache.org/repos/asf/ranger.git

commit 83dab8561c8f65f04a8c5ea104c65d72370e104e
Merge: ebcdc7f4d 04cb1dc5b
Author: Madhan Neethiraj <mad...@apache.org>
AuthorDate: Fri Jun 9 06:06:41 2023 -0700

    Merge branch 'master' into RANGER-3923

 .../ranger/plugin/errors/ValidationErrorCode.java  |   2 +-
 .../ranger/plugin/model/RangerSecurityZone.java    |  24 ++-
 .../validation/RangerSecurityZoneValidator.java    |  16 +-
 .../service/RangerDefaultRequestProcessor.java     |   4 +-
 .../python/apache_ranger/client/ranger_client.py   |  27 +++
 .../apache_ranger/model/ranger_security_zone.py    |   2 +
 .../optimized/current/ranger_core_db_mysql.sql     |  18 ++
 .../mysql/patches/075-create-sz-role-ref-table.sql |  32 ++++
 .../optimized/current/ranger_core_db_oracle.sql    |  19 +++
 .../patches/075-create-sz-ref-role-table.sql       |  33 ++++
 .../optimized/current/ranger_core_db_postgres.sql  |  21 +++
 .../patches/075-create-sz-ref-role-table.sql       |  37 +++++
 .../current/ranger_core_db_sqlanywhere.sql         |  24 +++
 .../patches/075-create-sz-ref-role-table.sql       |  40 +++++
 .../optimized/current/ranger_core_db_sqlserver.sql |  49 ++++++
 .../patches/075-create-sz-ref-role-table.sql       |  66 ++++++++
 .../java/org/apache/ranger/biz/RoleDBStore.java    |  18 ++
 .../apache/ranger/biz/SecurityZoneRefUpdater.java  | 144 +++++++---------
 .../java/org/apache/ranger/biz/ServiceDBStore.java |  36 ++++
 .../java/org/apache/ranger/biz/ServiceMgr.java     |  65 +++++++-
 .../main/java/org/apache/ranger/biz/XUserMgr.java  |  69 ++++++++
 .../java/org/apache/ranger/common/db/BaseDao.java  |   4 +
 .../org/apache/ranger/db/RangerDaoManagerBase.java |   2 +
 .../org/apache/ranger/db/XXAuthSessionDao.java     |  19 ++-
 .../main/java/org/apache/ranger/db/XXGroupDao.java |   2 +-
 .../apache/ranger/db/XXSecurityZoneRefRoleDao.java | 105 ++++++++++++
 .../ranger/entity/XXSecurityZoneRefRole.java       | 185 +++++++++++++++++++++
 .../java/org/apache/ranger/rest/PublicAPIsv2.java  |  15 ++
 .../org/apache/ranger/rest/SecurityZoneREST.java   |   9 +
 .../java/org/apache/ranger/rest/ServiceREST.java   |  39 +++++
 .../java/org/apache/ranger/rest/XUserREST.java     |  89 +++++++++-
 .../ranger/security/context/RangerAPIList.java     |   2 +
 .../service/RangerSecurityZoneServiceService.java  |   2 +
 .../apache/ranger/service/XGroupServiceBase.java   |  18 ++
 .../apache/ranger/service/XUserServiceBase.java    |  18 ++
 .../main/resources/META-INF/jpa_named_queries.xml  |  22 +++
 .../main/resources/conf.dist/ranger-admin-site.xml |   8 +
 .../scripts/views/policies/PermissionList.js       |   2 +-
 .../unixusersync/config/UserGroupSyncConfig.java   |  11 ++
 .../process/PolicyMgrUserGroupBuilder.java         | 175 +++++++++++--------
 40 files changed, 1298 insertions(+), 175 deletions(-)

diff --cc security-admin/src/main/java/org/apache/ranger/biz/ServiceMgr.java
index bbdd54a77,be360a66e..5784e49a9
--- a/security-admin/src/main/java/org/apache/ranger/biz/ServiceMgr.java
+++ b/security-admin/src/main/java/org/apache/ranger/biz/ServiceMgr.java
@@@ -46,8 -49,9 +49,10 @@@ import org.apache.ranger.plugin.service
  import org.apache.ranger.plugin.service.ResourceLookupContext;
  import org.apache.ranger.plugin.store.EmbeddedServiceDefsUtil;
  import org.apache.ranger.plugin.store.ServiceStore;
+ import org.apache.ranger.plugin.util.RangerRoles;
+ import org.apache.ranger.plugin.util.RangerRolesUtil;
  import org.apache.ranger.service.RangerServiceService;
 +import org.apache.ranger.services.gds.RangerServiceGds;
  import org.apache.ranger.services.tag.RangerServiceTag;
  import org.apache.ranger.view.VXMessage;
  import org.apache.ranger.view.VXResponse;
@@@ -82,9 -86,9 +87,12 @@@ public class ServiceMgr 
        @Autowired
        TagDBStore tagStore;
  
 +      @Autowired
 +      GdsDBStore gdsStore;
 +
+       @Autowired
+       RoleDBStore rolesStore;
+ 
        @Autowired
        TimedExecutor timedExecutor;
  
diff --cc 
security-admin/src/main/java/org/apache/ranger/security/context/RangerAPIList.java
index e3469c62d,816646eeb..4398764ae
--- 
a/security-admin/src/main/java/org/apache/ranger/security/context/RangerAPIList.java
+++ 
b/security-admin/src/main/java/org/apache/ranger/security/context/RangerAPIList.java
@@@ -209,45 -209,6 +209,47 @@@ public class RangerAPIList 
        public static final String 
SET_USER_ROLES_BY_NAME="XUserREST.setUserRolesByName";
        public static final String 
GET_USER_ROLES_BY_ID="XUserREST.getUserRolesByID";
        public static final String 
GET_USER_ROLES_BY_NAME="XUserREST.getUserRolesByName";
+       public static final String FORCE_DELETE_EXTERNAL_USERS = 
"XUserREST.forceDeleteExternalUsers";
+       public static final String FORCE_DELETE_EXTERNAL_GROUPS = 
"XUserREST.forceDeleteExternalGroups";
 +
 +      /**
 +       * List of APIs for DataShareREST
 +       */
 +      public static final String CREATE_DATASET      = 
"GdsREST.createDataset";
 +      public static final String UPDATE_DATASET      = 
"GdsREST.updateDataset";
 +      public static final String DELETE_DATASET      = 
"GdsREST.deleteDataset";
 +      public static final String GET_DATASET         = "GdsREST.getDataset";
 +      public static final String SEARCH_DATASETS     = 
"GdsREST.searchDatasets";
 +      public static final String LIST_DATASET_NAMES  = 
"GdsREST.listDatasetNames";
 +
 +      public static final String CREATE_PROJECT      = 
"GdsREST.createProject";
 +      public static final String UPDATE_PROJECT      = 
"GdsREST.updateProject";
 +      public static final String DELETE_PROJECT      = 
"GdsREST.deleteProject";
 +      public static final String GET_PROJECT         = "GdsREST.getProject";
 +      public static final String SEARCH_PROJECTS     = 
"GdsREST.searchProjects";
 +      public static final String LIST_PROJECT_NAMES  = 
"GdsREST.listProjectNames";
 +
 +      public static final String CREATE_DATA_SHARE   = 
"GdsREST.createDataShare";
 +      public static final String UPDATE_DATA_SHARE   = 
"GdsREST.updateDataShare";
 +      public static final String DELETE_DATA_SHARE   = 
"GdsREST.deleteDataShare";
 +      public static final String GET_DATA_SHARE      = "GdsREST.getDataShare";
 +      public static final String SEARCH_DATA_SHARES  = 
"GdsREST.searchDataShares";
 +
 +      public static final String ADD_SHARED_RESOURCE     = 
"GdsREST.addSharedResource";
 +      public static final String UPDATE_SHARED_RESOURCE  = 
"GdsREST.updateSharedResource";
 +      public static final String REMOVE_SHARED_RESOURCE  = 
"GdsREST.removeSharedResource";
 +      public static final String GET_SHARED_RESOURCE     = 
"GdsREST.getSharedResource";
 +      public static final String SEARCH_SHARED_RESOURCES = 
"GdsREST.searchSharedResources";
 +
 +      public static final String ADD_DATASHARE_IN_DATASET    = 
"GdsREST.addDataShareInDataset";
 +      public static final String UPDATE_DATASHARE_IN_DATASET = 
"GdsREST.updateDataShareInDataset";
 +      public static final String REMOVE_DATASHARE_IN_DATASET = 
"GdsREST.removeDataShareInDataset";
 +      public static final String GET_DATASHARE_IN_DATASET    = 
"GdsREST.getDataShareInDataset";
 +      public static final String SEARCH_DATASHARE_IN_DATASET = 
"GdsREST.searchDataShareInDataset";
 +
 +      public static final String ADD_DATASET_IN_PROJECT    = 
"GdsREST.addDatasetInProject";
 +      public static final String UPDATE_DATASET_IN_PROJECT = 
"GdsREST.updateDatasetInProject";
 +      public static final String REMOVE_DATASET_IN_PROJECT = 
"GdsREST.removeDatasetInProject";
 +      public static final String GET_DATASET_IN_PROJECT    = 
"GdsREST.getDatasetInProject";
 +      public static final String SEARCH_DATASET_IN_PROJECT = 
"GdsREST.searchDatasetInProject";
  }