Re: Review Request 74755: RANGER-4558 : User is allowed to create/update sharedResource, even if the user is not zoneAdmin in the linked dataShared

Prashant Satam Mon, 27 Nov 2023 23:09:19 -0800

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/74755/
-----------------------------------------------------------


(Updated Nov. 28, 2023, 7:09 a.m.)


Review request for ranger, Anand Nadar, Ankita Sinha, Madhan Neethiraj, Monika 
Kachhadiya, Subhrat Chaudhary, and Vanita Ubale.


Bugs: RANGER-4558
    https://issues.apache.org/jira/browse/RANGER-4558


Repository: ranger


Description
-------

User should be zoneAdmin along with datashare admin of linked sharedResource to 
create/update

 Steps to check
       1)Create SecurityZone 
       2)Create dataShare link SecurityZone to it
       3)Current user is only zoneAdmin not datashare admin
       4)Current User is able to create/upadate shared Resource
       5)Expected : The current user should be zoneAdmin as well as dataShare 
Admin to create/upadate shared Resource


Diffs (updated)
-----

  
security-admin/src/main/java/org/apache/ranger/validation/RangerGdsValidator.java
 178c8f0e2 


Diff: https://reviews.apache.org/r/74755/diff/2/

Changes: https://reviews.apache.org/r/74755/diff/1-2/


Testing
-------

Steps to Check
                1)Create SecurityZone 
                2)Create dataShare link SecurityZone to it
                3)Current user is zoneAdmin and datashare admin
                4)Current User is able to create/upadate shared Resource


Thanks,

Prashant Satam

Re: Review Request 74755: RANGER-4558 : User is allowed to create/update sharedResource, even if the user is not zoneAdmin in the linked dataShared

Reply via email to