Review Request 73659: RANGER-3490:Make policy resource signature is unique in a service

Abhay Kulkarni Wed, 20 Oct 2021 12:28:48 -0700

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73659/
-----------------------------------------------------------


Review request for ranger, Dineshkumar Yadav, Madhan Neethiraj, Pradeep 
Agrawal, Ramesh Mani, and Sailaja Polavarapu.


Bugs: RANGER-3490
    https://issues.apache.org/jira/browse/RANGER-3490


Repository: ranger


Description
-------

There may be multiple policies with the same resource signature within a 
service (at most one enabled policy and potentially any number of disabled 
policies).  Therefore, the resource-signature uniqueness within a service 
cannot be enforced at the database level.

The proposal is to encode GUID of a disabled policy within the resource 
signature, thus making the resource signature unique within a service.


Diffs
-----

  
agents-common/src/main/java/org/apache/ranger/plugin/model/RangerPolicyResourceSignature.java
 312005e0f 
  
agents-common/src/test/java/org/apache/ranger/plugin/model/TestRangerPolicyResourceSignature.java
 bc9df31cc 
  security-admin/src/main/java/org/apache/ranger/biz/ServiceDBStore.java 
f13cef71d 
  security-admin/src/test/java/org/apache/ranger/biz/TestServiceDBStore.java 
ef0d3b4eb 


Diff: https://reviews.apache.org/r/73659/diff/1/


Testing
-------

Compiled and ran all unit tests successfully.


Thanks,

Abhay Kulkarni

Review Request 73659: RANGER-3490:Make policy resource signature is unique in a service

Reply via email to