respon007 commented on PR #291:
URL: https://github.com/apache/ranger/pull/291#issuecomment-1910220709
> ZooKeeper 3.5 has a transitive dependency on a zookeeper-jute artifact.
./distro/src/main/assembly/plugin-trino.xml should have
"org.apache.zookeeper:zookeeper-jute:jar:${zookeeper.version}"
>
>
> The latest version of Trino supports the update statement. vim
./ranger-trino-plugin-shim/src/main/java/org/apache/ranger/authorization/trino/authorizer/RangerSystemAccessControl.java
>
> 246 //kimdy 247 @OverRide 248 public void
checkCanUpdateTableColumns(SystemSecurityContext securityContext,
CatalogSchemaTableName table, Set updatedColumnNames) { 249 try { 250
activatePluginClassLoader(); 251
systemAccessControlImpl.checkCanUpdateTableColumns(securityContext, table,
updatedColumnNames); 252 } finally { 253 deactivatePluginClassLoader(); 254 }
255 }
>
> vim
./plugin-trino/src/main/java/org/apache/ranger/authorization/trino/authorizer/RangerSystemAccessControl.java
>
> 631 // kimdy 632 @OverRide 633 public void
checkCanUpdateTableColumns(SystemSecurityContext securityContext,
CatalogSchemaTableName table, Set updatedColumnNames){ 634 for
(RangerTrinoResource res : createResource(table, updatedColumnNames)) { 635 if
(!hasPermission(res, securityContext, TrinoAccessType.UPDATE)) { 636
LOG.debug("RangerSystemAccessControl.checkCanUpdateTableColumns(" +
table.getSchemaTableName().getTableName() + ") denied"); 637
AccessDeniedException.denyUpdateTableColumns(table.getSchemaTableName().getTableName(),
updatedColumnNames); 638 } 639 } 640 }
>
> // UDPATE 추가 923 enum TrinoAccessType { 924 CREATE, DROP, SELECT, INSERT,
DELETE, USE, ALTER, ALL, GRANT, REVOKE, SHOW, IMPERSONATE, EXECUTE, UPDATE; 925
}
>
> 3. 나의 빌드 환경
> java -version
> openjdk version "17.0.7" 2023-04-18 LTS
> OpenJDK Runtime Environment Zulu17.42+19-CA (build 17.0.7+7-LTS)
> OpenJDK 64-Bit Server VM Zulu17.42+19-CA (build 17.0.7+7-LTS, mixed
mode, sharing)
>
> mvn -v Apache Maven 3.8.8 (4c87b05d9aedce574290d1acc98575ed5eb6cd39) Maven
home: /opt/apps/maven Java version: 17.0.7, vendor: Azul Systems, Inc.,
runtime: /opt/apps/zulu17.42.19-ca-jdk17.0.7-linux_x64 Default locale: en_US,
platform encoding: UTF-8 OS name: "linux", version: "3.10.0-1160.el7.x86_64",
arch: "amd64", family: "unix"
>
> mvn clean package -DskipTests -P ranger-trino-plugin,-linux -am -pl
distro,plugin-trino,ranger-trino-plugin-shim,agents-installer,credentialbuilder
>
> 4. Lastly, ranger's group policy doesn't seem to apply well to trino. The
role policy applies well to trino.
> 5. I'm an old school poor IT guy who's not familiar with GIT, so I don't
know what form and procedure I should use to submit a proposal. I hope this was
of some help. Your efforts have been of great help to me. thank you!
@origin0099 I have tried your way,but the "Permissions" had no "Update"
option. Could you help me?
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
