[
https://issues.apache.org/jira/browse/RANGER-3643?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Madhan Neethiraj updated RANGER-3643:
-------------------------------------
Description:
Ranger admin and plugins recognize following configurations that allow listed
users and groups to perform specific operations. Service configuration UI in
Ranger admin should be updated to list these configurations, with the ability
to pick users and groups (similar to the policy UI).
|| ||Configuration||Label||Description||
|1|service.admin.users|Service Admin Users|listed users can
create/update/delete/read policies in the service|
|2|service.admin.groups|Service Admin Groups|users in listed grous can
create/update/delete/read policies in the service|
|3|policy.download.auth.users|Policy download users|listed users can download
policies in the service|
|4|policy.grantrevoke.auth.users|Policy grant/revoke users|listed users can
call grant/revoke APIs to update policies in the service|
|5|tag.download.auth.users|Tag download users|listed users can download tags in
the service|
|6|userstore.download.auth.users|Userstore download users|listed users can
download user and group details|
|7|ranger.plugin.super.users|Superusers|the plugin grants all accesses on all
resources to listed users|
|8|ranger.plugin.super.groups|Superuser groups|the plugin grants all accesses
on all resources to users in listed groups|
was:
Should directly expose plugin authentication related attributes in the service
page.
# tag.download.auth.users
# service.admin.users
# policy.download.auth.users
# policy.grantrevoke.auth.users
Just like commonNameForCertificate which is already on service pages
!WhatIWant.jpg|width=312,height=331!
Summary: Service config UI to include additional configurations like
service.admin.users, service.admin.groups (was: Directly expose plugin
authentication related attributes in the service page.)
> Service config UI to include additional configurations like
> service.admin.users, service.admin.groups
> -----------------------------------------------------------------------------------------------------
>
> Key: RANGER-3643
> URL: https://issues.apache.org/jira/browse/RANGER-3643
> Project: Ranger
> Issue Type: Improvement
> Components: admin, plugins
> Affects Versions: 3.0.0, 2.3.0
> Reporter: kirby zhou
> Priority: Major
> Attachments: WhatIWant.jpg
>
>
> Ranger admin and plugins recognize following configurations that allow listed
> users and groups to perform specific operations. Service configuration UI in
> Ranger admin should be updated to list these configurations, with the ability
> to pick users and groups (similar to the policy UI).
>
> || ||Configuration||Label||Description||
> |1|service.admin.users|Service Admin Users|listed users can
> create/update/delete/read policies in the service|
> |2|service.admin.groups|Service Admin Groups|users in listed grous can
> create/update/delete/read policies in the service|
> |3|policy.download.auth.users|Policy download users|listed users can download
> policies in the service|
> |4|policy.grantrevoke.auth.users|Policy grant/revoke users|listed users can
> call grant/revoke APIs to update policies in the service|
> |5|tag.download.auth.users|Tag download users|listed users can download tags
> in the service|
> |6|userstore.download.auth.users|Userstore download users|listed users can
> download user and group details|
> |7|ranger.plugin.super.users|Superusers|the plugin grants all accesses on all
> resources to listed users|
> |8|ranger.plugin.super.groups|Superuser groups|the plugin grants all accesses
> on all resources to users in listed groups|
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
