Review Request 72298: RANGER-785: updated Ranger plugin to support the notion of super-users and super-groups

Madhan Neethiraj Wed, 01 Apr 2020 00:43:38 -0700

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72298/
-----------------------------------------------------------


Review request for ranger, deepak sharma, Kishor Gollapalliwar, Abhay Kulkarni, 
Mehul Parikh, Nitin Galave, Ramesh Mani, Sailaja Polavarapu, and Velmurugan 
Periasamy.


Bugs: RANGER-785
    https://issues.apache.org/jira/browse/RANGER-785


Repository: ranger


Description
-------

- added method RangerBasePlugin.setSuperUsersAndGroups(users, groups), which a 
plugin implementation can call to register users and groups for whom all 
permissions should be allowed
- additional super-users and groups can be specified via service-configurations 
ranger.plugin.super.users, ranger.plugin.service.groups
- Ranger plugin will allow all accesses from super users and groups
- Ranger plugin generates audit logs for such accesses - just as for regular 
users


Diffs
-----

  
agents-common/src/main/java/org/apache/ranger/plugin/policyengine/RangerPolicyEngine.java
 460290345 
  
agents-common/src/main/java/org/apache/ranger/plugin/policyengine/RangerPolicyEngineImpl.java
 fefa4659f 
  
agents-common/src/main/java/org/apache/ranger/plugin/service/RangerBasePlugin.java
 32fbb0687 
  
agents-common/src/test/java/org/apache/ranger/plugin/policyengine/TestPolicyEngine.java
 4265b06e3 
  
agents-common/src/test/resources/policyengine/test_policyengine_super_user_groups.json
 PRE-CREATION 


Diff: https://reviews.apache.org/r/72298/diff/1/


Testing
-------

- added unit tests to cover the new feature


Thanks,

Madhan Neethiraj

Review Request 72298: RANGER-785: updated Ranger plugin to support the notion of super-users and super-groups

Reply via email to