[
https://issues.apache.org/jira/browse/HAWQ-256?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15420803#comment-15420803
]
Hubert Zhang commented on HAWQ-256:
-----------------------------------
i review the Ranger doc for ranger policy evaluation flow,
It said that if no allow-condition matches the request, the access result will
be undertermined. In this case, most components will deny the access. However,
components like HDFS and YARN fallback to their native ACL to determine the
access
So I think it's also reasonable for HAWQ to follow this way. No record leads to
unknown return value, and let HAWQ to handle the behaviour. Also, this suggest
only works in Ranger0.6+
> Integrate Security with Apache Ranger
> -------------------------------------
>
> Key: HAWQ-256
> URL: https://issues.apache.org/jira/browse/HAWQ-256
> Project: Apache HAWQ
> Issue Type: New Feature
> Components: PXF, Security
> Reporter: Michael Andre Pearce (IG)
> Assignee: Lili Ma
> Fix For: backlog
>
> Attachments: HAWQRangerSupportDesign.pdf
>
>
> Integrate security with Apache Ranger for a unified Hadoop security solution.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
