[
https://issues.apache.org/jira/browse/NIFI-4925?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16386734#comment-16386734
]
ASF GitHub Bot commented on NIFI-4925:
--------------------------------------
Github user asfgit closed the pull request at:
https://github.com/apache/nifi/pull/2511
> Ranger Authorizer - Memory Leak
> -------------------------------
>
> Key: NIFI-4925
> URL: https://issues.apache.org/jira/browse/NIFI-4925
> Project: Apache NiFi
> Issue Type: Bug
> Components: Extensions
> Reporter: Matt Gilman
> Assignee: Matt Gilman
> Priority: Critical
> Fix For: 1.6.0
>
>
> Authorization requests/results are now explicitly audited. This change was
> due to the fact that the Ranger was auditing a lot of false positives
> previously. This is partly because the NiFi uses authorization to check which
> features the user may have permissions to. This check is used to
> enable/disable various parts of the UI. The remainder of the false positives
> came from the authorizer not knowing the entire context of the request. For
> instance, when a Processor has no policy we check its parent and so on.
> The memory leak is due to the authorizer holding onto authorization results
> that are never destined for auditing.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
