[jira] [Created] (KUDU-3661) Update table privileges from Ranger not honored

Abhishek Chennaka (Jira) Wed, 23 Apr 2025 12:41:16 -0700

Abhishek Chennaka created KUDU-3661:
---------------------------------------


             Summary: Update table privileges from Ranger not honored
                 Key: KUDU-3661
                 URL: https://issues.apache.org/jira/browse/KUDU-3661
             Project: Kudu
          Issue Type: Bug
            Reporter: Abhishek Chennaka


In RHEL/CentOS 8 machines there have been reports where UPDATE permission for a 
user set in Ranger is not honored by Kudu and the clients face the below error 
message from tablet servers when performing UPDATE operations:


{code:java}
[kudu-nio-1] ERROR org.apache.kudu.client.Connection - [peer 
09bdfbf068c742478ddd32a5593e5b36(ccycloud-3.kudu-ranger.root.comops.site:7050)] 
server sent error Not authorized: not authorized to UPDATE [kudu-nio-2] ERROR 
org.apache.kudu.client.Connection - [peer 
a3f00ea341124f08a52264fe4cfd8726(ccycloud-2.kudu-ranger.root.comops.site:7050)] 
server sent error Not authorized: not authorized to UPDATE [kudu-nio-1] ERROR 
org.apache.kudu.client.Connection - [peer 
09bdfbf068c742478ddd32a5593e5b36(ccycloud-3.kudu-ranger.root.comops.site:7050)] 
server sent error Not authorized: not authorized to UPDATE{code}

A workaround is to set ALL permissions in Ranger for the specific user.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (KUDU-3661) Update table privileges from Ranger not honored

Reply via email to