[
https://issues.apache.org/jira/browse/RANGER-4414?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17765709#comment-17765709
]
Madhan Neethiraj commented on RANGER-4414:
------------------------------------------
[~suchnit] - RLF policy having a policy-item with empty a filter condition is
a valid scenario. Consider this requirement:
* users in group1 should be allowed to access all rows
* all other users should be allowed to access only the rows for their dept
This is done with a RLF policy with following policy items:
# group=group1, filter=""
# group=public, filter="{{{}dept_id = ${\{USER.dept_id}}{}}}"
> Creation of RLF policy without filter condition is allowed
> ----------------------------------------------------------
>
> Key: RANGER-4414
> URL: https://issues.apache.org/jira/browse/RANGER-4414
> Project: Ranger
> Issue Type: Bug
> Components: admin
> Reporter: Subhrat Chaudhary
> Assignee: Subhrat Chaudhary
> Priority: Major
>
> A Row Level filter policy without filter condition is allowed to be created
> in Ranger UI and backend. We should block this, since RLF policy without
> filter condition can't be used and can lead to error if not handled in plugin
> end.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
