----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/74232/#review224966 -----------------------------------------------------------
Ship it! Ship It! - Madhan Neethiraj On Dec. 6, 2022, 10:28 p.m., Abhay Kulkarni wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/74232/ > ----------------------------------------------------------- > > (Updated Dec. 6, 2022, 10:28 p.m.) > > > Review request for ranger, madhan, Madhan Neethiraj, Ramesh Mani, Sailaja > Polavarapu, and Velmurugan Periasamy. > > > Bugs: RANGER-3999 > https://issues.apache.org/jira/browse/RANGER-3999 > > > Repository: ranger > > > Description > ------- > > If a user-initiated operation requires checking if more than one permission > is granted, then currently, each permission requires a call to internal > Policy Engine API for the same accessed resource. This leads to many > repetitive computations which may be avoided if the policy engine API > supports multiple permissions. In that case, optimization may be achieved by > pushing authorization for multiple permissions down to the lowest possible > level. > > > Diffs > ----- > > > agents-common/src/main/java/org/apache/ranger/plugin/policyengine/RangerAccessRequestWrapper.java > PRE-CREATION > > agents-common/src/main/java/org/apache/ranger/plugin/policyengine/RangerPolicyEngineImpl.java > 23db18f3a > > agents-common/src/main/java/org/apache/ranger/plugin/policyevaluator/RangerDefaultPolicyEvaluator.java > 520ddf865 > > agents-common/src/main/java/org/apache/ranger/plugin/policyevaluator/RangerOptimizedPolicyEvaluator.java > d3fc27d7d > > agents-common/src/main/java/org/apache/ranger/plugin/util/RangerAccessRequestUtil.java > df03ed1c4 > > > Diff: https://reviews.apache.org/r/74232/diff/3/ > > > Testing > ------- > > Passed all existing unit tests. > > > Thanks, > > Abhay Kulkarni > >