[jira] [Created] (AMBARI-6318) Views : Admin - Add Permission Resource

Mon, 30 Jun 2014 08:22:27 -0700 

Tom Beerbower created AMBARI-6318:
-------------------------------------

             Summary: Views : Admin - Add Permission Resource
                 Key: AMBARI-6318
                 URL: https://issues.apache.org/jira/browse/AMBARI-6318
             Project: Ambari
          Issue Type: Task
            Reporter: Tom Beerbower
            Assignee: Tom Beerbower
             Fix For: 1.7.0


Add service/resource, resource provider and db tables/entities for Permissions 
resources as described in the Admin doc ...

https://docs.google.com/a/hortonworks.com/document/d/1heCrAA6hNM8qvQ091f8KGICABw2pY6Pt25uyfAvV8SQ/edit?disco=AAAAAJqU6lg#

API support
{code}
GET
/api/v1/permissions/CLUSTER.READ
Response
{
  "href" : "http://<server>:8080/api/v1/permissions/VIEW",
  "Permissions" : {
    "name" : "CLUSTER.READ",
    "description" : "The read cluster permission … "
  }
}
{code}

{code}
GET
/api/v1/permissions
Response
{
  "href" : "http://server:8080/api/v1/permissions/";,
  "items" : [
    {
      "href" : "http://server:8080/api/v1/permissions/VIEW";,
      "Permissions" : {
        "name" : "CLUSTER.READ"
      }
    },
    {
      "href" : "http://server:8080/api/v1/permissions/OPERATE";,
      "Permissions" : {
        "name" : "CLUSTER.OPERATE"
      }
    },
    {
      "href" : "http://server:8080/api/v1/permissions/ADMIN";,
      "Permissions" : {
        "name" : "AMBARI.ADMIN"
      }
    }
  ]
}
{code}


Built-in Permissions (view, cluster, Ambari)

*View*

VIEW.USE
Gives access to view

View permissions may be granted and revoked by any user with the AMBARI.ADMIN 
privilege.

*Cluster*

CLUSTER.READ
Gives read only access to the cluster
CLUSTER.OPERATE
Gives ability to manage cluster

Cluster permissions may be granted and revoked by any user with the 
AMBARI.ADMIN privilege.

Note that in an upgrade scenario, users in the old USER role will automatically 
be granted the CLUSTER.READ privilege on the cluster instance.  Users in the 
old ADMIN role will automatically be granted the CLUSTER.OPERATE privilege on 
the cluster instance.

*Ambari*

AMBARI.ADMIN
Gives ability to manage clusters, manage views, create users, etc.

Ambari permissions may be granted and revoked by any user with the AMBARI.ADMIN 
privilege.  On initial install the default ‘admin’ user is automatically 
granted the AMBARI.ADMIN permission on the Ambari resource.





--
This message was sent by Atlassian JIRA
(v6.2#6252)

Reply via email to