[ https://issues.apache.org/jira/browse/HAWQ-256?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15420803#comment-15420803 ]
Hubert Zhang commented on HAWQ-256: ----------------------------------- i review the Ranger doc for ranger policy evaluation flow, It said that if no allow-condition matches the request, the access result will be undertermined. In this case, most components will deny the access. However, components like HDFS and YARN fallback to their native ACL to determine the access So I think it's also reasonable for HAWQ to follow this way. No record leads to unknown return value, and let HAWQ to handle the behaviour. Also, this suggest only works in Ranger0.6+ > Integrate Security with Apache Ranger > ------------------------------------- > > Key: HAWQ-256 > URL: https://issues.apache.org/jira/browse/HAWQ-256 > Project: Apache HAWQ > Issue Type: New Feature > Components: PXF, Security > Reporter: Michael Andre Pearce (IG) > Assignee: Lili Ma > Fix For: backlog > > Attachments: HAWQRangerSupportDesign.pdf > > > Integrate security with Apache Ranger for a unified Hadoop security solution. -- This message was sent by Atlassian JIRA (v6.3.4#6332)