Re: Review Request 72332: RANGER-2770 : Upgrade jackson-databind to version 2.9.10.4 [CVE-2020-8840] - (Ranger)

[Dineshkumar Yadav]

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72332/
---

(Updated April 16, 2020, 6:52 a.m.)


Review request for ranger, Ankita Sinha, Gautam Borad, Abhay Kulkarni, Mehul 
Parikh, Pradeep Agrawal, and Velmurugan Periasamy.


Changes
---

Upgrade jackson-databind to version 2.9.10.4


Summary (updated)
-

RANGER-2770 : Upgrade jackson-databind to version 2.9.10.4 [CVE-2020-8840] - 
(Ranger)


Repository: ranger


Description (updated)
---

upgraded the jackson-databind to version 2.9.10.4 from version 2.9.9.3


Diffs (updated)
-

  distro/src/main/assembly/usersync.xml d1053aa12 
  pom.xml b62d9b663 


Diff: https://reviews.apache.org/r/72332/diff/2/

Changes: https://reviews.apache.org/r/72332/diff/1-2/


Testing
---

Testing performed all the CRUD operation on the Service/Policy/User/group/role 
using UI and API.

Expected result: There should not be any change in the behavior after upgrade.


Thanks,

Dineshkumar Yadav

[jira] [Updated] (RANGER-2770) Upgrade jackson-databind to version 2.10.0 [CVE-2020-8840] - (Ranger)

[Dineshkumar Yadav (Jira)]

 [ 
https://issues.apache.org/jira/browse/RANGER-2770?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Dineshkumar Yadav updated RANGER-2770:
--
Attachment: 0001-RANGER-2770-Upgrade-jackson-databind-to-version-2.9..patch

> Upgrade jackson-databind to version 2.10.0 [CVE-2020-8840] - (Ranger)
> -
>
> Key: RANGER-2770
> URL: https://issues.apache.org/jira/browse/RANGER-2770
> Project: Ranger
>  Issue Type: Improvement
>  Components: Ranger
>Reporter: Dineshkumar Yadav
>Assignee: Dineshkumar Yadav
>Priority: Major
> Attachments: 
> 0001-RANGER-2770-Upgrade-jackson-databind-to-version-2.10.patch, 
> 0001-RANGER-2770-Upgrade-jackson-databind-to-version-2.9..patch
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Created] (RANGER-2796) Ranger Reports page to show user + groups policies for user based search

[Dineshkumar Yadav (Jira)]

Dineshkumar Yadav created RANGER-2796:
-

 Summary: Ranger Reports page to show user + groups policies for 
user based search
 Key: RANGER-2796
 URL: https://issues.apache.org/jira/browse/RANGER-2796
 Project: Ranger
  Issue Type: Improvement
  Components: Ranger
Reporter: Dineshkumar Yadav


Reports page returns only user based policies in search for user's policies.  
This is existing behaviour in Ranger since long time. Need to improvise. 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (RANGER-2793) Admin log clogged with a warning

[Pradeep Agrawal (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2793?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17084161#comment-17084161
 ] 

Pradeep Agrawal commented on RANGER-2793:
-

[~dineshkumar-yadav] Please keep a practice adding RR link also with the patch.

> Admin log clogged with a warning
> 
>
> Key: RANGER-2793
> URL: https://issues.apache.org/jira/browse/RANGER-2793
> Project: Ranger
>  Issue Type: Task
>  Components: Ranger
>Reporter: Dineshkumar Yadav
>Assignee: Dineshkumar Yadav
>Priority: Major
> Attachments: 
> 0001-RANGER-2793-fixed-Admin-log-clogged-with-a-warning.patch
>
>
> There is a warning message in the ranger admin log getting written quite a 
> lot.
> Eg.
> 2020-04-07 00:25:31,718 WARN 
> org.apache.hadoop.security.authentication.util.KerberosName: auth_to_local 
> rule mechanism not set.Using default of hadoop
> 2020-04-07 00:25:31,735 WARN 
> org.apache.hadoop.security.authentication.util.KerberosName: auth_to_local 
> rule mechanism not set.Using default of hadoop
> 2020-04-07 00:25:35,192 WARN org.apache.hadoop.security.authentication.util.
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Assigned] (RANGER-2794) Search is not working in Role page

[Pradeep Agrawal (Jira)]

 [ 
https://issues.apache.org/jira/browse/RANGER-2794?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Pradeep Agrawal reassigned RANGER-2794:
---

Assignee: Mahesh Hanumant Bandal

> Search is not working in Role page
> --
>
> Key: RANGER-2794
> URL: https://issues.apache.org/jira/browse/RANGER-2794
> Project: Ranger
>  Issue Type: Bug
>  Components: Ranger
>Reporter: Harshal Chavan
>Assignee: Mahesh Hanumant Bandal
>Priority: Major
> Attachments: RANGER-2794-V1.patch
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (RANGER-2795) Update Presto serviceDef for upgrade case of RANGER-2754

[Pradeep Agrawal (Jira)]

 [ 
https://issues.apache.org/jira/browse/RANGER-2795?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Pradeep Agrawal updated RANGER-2795:

Description: Update Presto serviceDef for upgrade case of RANGER-2754  
(was: Update Atlas serviceDef for upgrade case of RANGER-2734)

> Update Presto serviceDef for upgrade case of RANGER-2754
> 
>
> Key: RANGER-2795
> URL: https://issues.apache.org/jira/browse/RANGER-2795
> Project: Ranger
>  Issue Type: Bug
>  Components: Ranger
>Affects Versions: 2.1.0, 2.1
>Reporter: Pradeep Agrawal
>Assignee: Bolke de Bruin
>Priority: Major
>
> Update Presto serviceDef for upgrade case of RANGER-2754



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Assigned] (RANGER-2795) Update Presto serviceDef for upgrade case of RANGER-2754

[Pradeep Agrawal (Jira)]

 [ 
https://issues.apache.org/jira/browse/RANGER-2795?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Pradeep Agrawal reassigned RANGER-2795:
---

Assignee: Bolke de Bruin

> Update Presto serviceDef for upgrade case of RANGER-2754
> 
>
> Key: RANGER-2795
> URL: https://issues.apache.org/jira/browse/RANGER-2795
> Project: Ranger
>  Issue Type: Bug
>  Components: Ranger
>Affects Versions: 2.1.0, 2.1
>Reporter: Pradeep Agrawal
>Assignee: Bolke de Bruin
>Priority: Major
>
> Update Atlas serviceDef for upgrade case of RANGER-2734



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Created] (RANGER-2795) Update Presto serviceDef for upgrade case of RANGER-2754

[Pradeep Agrawal (Jira)]

Pradeep Agrawal created RANGER-2795:
---

 Summary: Update Presto serviceDef for upgrade case of RANGER-2754
 Key: RANGER-2795
 URL: https://issues.apache.org/jira/browse/RANGER-2795
 Project: Ranger
  Issue Type: Bug
  Components: Ranger
Affects Versions: 2.1.0, 2.1
Reporter: Pradeep Agrawal


Update Atlas serviceDef for upgrade case of RANGER-2734



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Re: Review Request 72272: Upgrade and improve Presto plugin

[Pradeep Agrawal]

> On 四月 5, 2020, 6:09 p.m., Madhan Neethiraj wrote:
> > agents-common/src/main/resources/service-defs/ranger-servicedef-presto.json
> > Lines 96 (patched)
> > 
> >
> > To update existing Ranger instances with these service-def changes, 
> > consider adding a Java patch similar to 
> > PatchForAtlasToAddEntityLabelAndBusinessMetadata_J10034.java that handles 
> > recent updates to Atlas service-def.
> > 
> > This can be taken up in a subsequent commit.

Created RANGER-2795 to track this separately.


> On 四月 5, 2020, 6:09 p.m., Madhan Neethiraj wrote:
> > ranger-presto-plugin-shim/pom.xml
> > Lines 93 (patched)
> > 
> >
> > The changes in this module don't seem to refer hadoop-hdfs library 
> > contents directly. Is it necessary to explicitly add this dependency?
> 
> Bolke de Bruin wrote:
> I'm not getting it into the assembly otherwise for auditing purposes? 
> please advise.

try adding in 
https://github.com/apache/ranger/blob/master/distro/src/main/assembly/plugin-presto.xml
make sure you are adding in the directory where you want it.


> On 四月 5, 2020, 6:09 p.m., Madhan Neethiraj wrote:
> > ranger-presto-plugin-shim/pom.xml
> > Lines 134 (patched)
> > 
> >
> > The changes in this module don't seem to refer protobuf-java library 
> > contents directly. Is it necessary to explicitly add this dependency?
> 
> Bolke de Bruin wrote:
> Idem as above. How to get it in the assembly? It seems not to be included 
> otherwise (struggling with that overall btw)

try adding in 
https://github.com/apache/ranger/blob/master/distro/src/main/assembly/plugin-presto.xml
make sure you are adding in the directory where you want it.


- Pradeep


---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72272/#review220223
---


On 四月 15, 2020, 6:49 a.m., Bolke de Bruin wrote:
> 
> ---
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72272/
> ---
> 
> (Updated 四月 15, 2020, 6:49 a.m.)
> 
> 
> Review request for ranger, Madhan Neethiraj, Mehul Parikh, Pradeep Agrawal, 
> and Ramesh Mani.
> 
> 
> Bugs: https://issues.apache.org/jira/browse/RANGER-2754
> 
> https://issues.apache.org/jira/browse/https://issues.apache.org/jira/browse/RANGER-2754
> 
> 
> Repository: ranger
> 
> 
> Description
> ---
> 
> Upgrade and improve Presto plugin
> - Presto SQL 331 has changed its security API and has Row level / column 
> masking functionality
> - Upgraded Hadoop dependency to 3.1.3 (from 3.1.1) due to improved security 
> handling
> - New features like session properties and system properties
> 
> 
> Diffs
> -
> 
>   agents-common/src/main/resources/service-defs/ranger-servicedef-presto.json 
> 56a8f5ac0 
>   distro/src/main/assembly/plugin-presto.xml d2075bfe7 
>   plugin-presto/pom.xml b63f7dede 
>   
> plugin-presto/src/main/java/org/apache/ranger/authorization/presto/authorizer/RangerSystemAccessControl.java
>  3ab63f590 
>   
> plugin-presto/src/test/java/org/apache/ranger/authorization/presto/authorizer/RangerAdminClientImpl.java
>  PRE-CREATION 
>   
> plugin-presto/src/test/java/org/apache/ranger/authorization/presto/authorizer/RangerSystemAccessControlTest.java
>  PRE-CREATION 
>   plugin-presto/src/test/resources/log4j.properties PRE-CREATION 
>   plugin-presto/src/test/resources/presto-policies.json PRE-CREATION 
>   plugin-presto/src/test/resources/ranger-presto-security.xml PRE-CREATION 
>   pom.xml b62d9b663 
>   ranger-presto-plugin-shim/pom.xml d8ff88d0f 
>   
> ranger-presto-plugin-shim/src/main/java/org/apache/ranger/authorization/presto/authorizer/RangerConfig.java
>  67b0d2434 
>   
> ranger-presto-plugin-shim/src/main/java/org/apache/ranger/authorization/presto/authorizer/RangerSystemAccessControl.java
>  e89f646e1 
> 
> 
> Diff: https://reviews.apache.org/r/72272/diff/8/
> 
> 
> Testing
> ---
> 
> - New Unit tests added
> - Tested locally in production
> 
> 
> Thanks,
> 
> Bolke de Bruin
> 
>

Re: Review Request 72357: RANGER-2793 Admin log clogged with a warning

[Pradeep Agrawal]

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72357/#review220319
---


Ship it!




Ship It!

- Pradeep Agrawal


On 四月 15, 2020, 9:33 a.m., Dineshkumar Yadav wrote:
> 
> ---
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72357/
> ---
> 
> (Updated 四月 15, 2020, 9:33 a.m.)
> 
> 
> Review request for ranger, Ankita Sinha, Gautam Borad, Abhay Kulkarni, Mehul 
> Parikh, Pradeep Agrawal, Vishal Suvagia, and Velmurugan Periasamy.
> 
> 
> Repository: ranger
> 
> 
> Description
> ---
> 
> Below warning message in the ranger admin log getting written quite a lot in 
> kerberos environment.
> 
> 2020-04-07 00:25:31,718 WARN 
> org.apache.hadoop.security.authentication.util.KerberosName: auth_to_local 
> rule mechanism not set.Using default of hadoop
> 
> 
> Diffs
> -
> 
>   
> security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKRBAuthenticationFilter.java
>  994559e47 
> 
> 
> Diff: https://reviews.apache.org/r/72357/diff/1/
> 
> 
> Testing
> ---
> 
> Before patch
> Environment : Kerberos 
> 
> we will see lots of warning message as mentioned below.
> 
> 2020-04-07 00:25:31,718 WARN 
> org.apache.hadoop.security.authentication.util.KerberosName: auth_to_local 
> rule mechanism not set.Using default of hadoop
> 
> After patch 
> Expected: above warning log should not appear anymore.
> 
> 
> Thanks,
> 
> Dineshkumar Yadav
> 
>

[jira] [Commented] (RANGER-2794) Search is not working in Role page

[Mahesh Hanumant Bandal (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2794?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17084098#comment-17084098
 ] 

Mahesh Hanumant Bandal commented on RANGER-2794:


https://reviews.apache.org/r/72366/

> Search is not working in Role page
> --
>
> Key: RANGER-2794
> URL: https://issues.apache.org/jira/browse/RANGER-2794
> Project: Ranger
>  Issue Type: Bug
>  Components: Ranger
>Reporter: Harshal Chavan
>Priority: Major
> Attachments: RANGER-2794-V1.patch
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (RANGER-2794) Search is not working in Role page

[Mahesh Hanumant Bandal (Jira)]

 [ 
https://issues.apache.org/jira/browse/RANGER-2794?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mahesh Hanumant Bandal updated RANGER-2794:
---
Attachment: RANGER-2794-V1.patch

> Search is not working in Role page
> --
>
> Key: RANGER-2794
> URL: https://issues.apache.org/jira/browse/RANGER-2794
> Project: Ranger
>  Issue Type: Bug
>  Components: Ranger
>Reporter: Harshal Chavan
>Priority: Major
> Attachments: RANGER-2794-V1.patch
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (RANGER-2395) Add presto plugin

[Bolke de Bruin (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2395?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17084087#comment-17084087
 ] 

Bolke de Bruin commented on RANGER-2395:


That will not work. The current plugin does not support presto >317 due to an 
api change on The side of presto

> Add presto plugin
> -
>
> Key: RANGER-2395
> URL: https://issues.apache.org/jira/browse/RANGER-2395
> Project: Ranger
>  Issue Type: Improvement
>  Components: plugins
>Reporter: Bolke de Bruin
>Assignee: Bolke de Bruin
>Priority: Major
> Fix For: 2.0.0
>
> Attachments: 0001-Add-Presto-plugin.patch
>
>  Time Spent: 7.5h
>  Remaining Estimate: 0h
>
> Presto (or PrestoDB) is an open source, distributed SQL query engine, 
> designed from the ground up for fast analytic queries against data of any 
> size. It supports both non-relational sources, such as the Hadoop Distributed 
> File System (HDFS), [Amazon S3|https://aws.amazon.com/s3/], Cassandra, 
> MongoDB, and [HBase|https://aws.amazon.com/emr/details/hbase/], and 
> relational data sources such as MySQL, PostgreSQL, [Amazon 
> Redshift|https://aws.amazon.com/redshift/], Microsoft SQL Server, and 
> Teradata.
> This is to track a Ranger plugin for Presto



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (RANGER-2754) Update presto dependency and implement row/column level security

[Bolke de Bruin (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2754?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17084085#comment-17084085
 ] 

Bolke de Bruin commented on RANGER-2754:


I suggest building master with this patch and push the service definition into 
Ranger 1.2 and start presto with the plugin you built.

> Update presto dependency and implement row/column level security
> 
>
> Key: RANGER-2754
> URL: https://issues.apache.org/jira/browse/RANGER-2754
> Project: Ranger
>  Issue Type: Improvement
>  Components: plugins
>Affects Versions: master
>Reporter: Bolke de Bruin
>Assignee: Bolke de Bruin
>Priority: Major
> Attachments: 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> RANGER-2754-v2.patch, RANGER-2754.patch
>
>
> 1. PrestoSql has changed its Security API hence the Ranger plugin has stopped 
> working for versions > ~321. 
> 2. Presto master now has row/column level security support



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Created] (RANGER-2794) Search is not working in Role page

[Harshal Chavan (Jira)]

Harshal Chavan created RANGER-2794:
--

 Summary: Search is not working in Role page
 Key: RANGER-2794
 URL: https://issues.apache.org/jira/browse/RANGER-2794
 Project: Ranger
  Issue Type: Bug
  Components: Ranger
Reporter: Harshal Chavan






--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Re: Review Request 72357: RANGER-2793 Admin log clogged with a warning

[Dineshkumar Yadav]

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72357/
---

(Updated April 15, 2020, 9:33 a.m.)


Review request for ranger, Ankita Sinha, Gautam Borad, Abhay Kulkarni, Mehul 
Parikh, Pradeep Agrawal, Vishal Suvagia, and Velmurugan Periasamy.


Repository: ranger


Description
---

Below warning message in the ranger admin log getting written quite a lot in 
kerberos environment.

2020-04-07 00:25:31,718 WARN 
org.apache.hadoop.security.authentication.util.KerberosName: auth_to_local rule 
mechanism not set.Using default of hadoop


Diffs
-

  
security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKRBAuthenticationFilter.java
 994559e47 


Diff: https://reviews.apache.org/r/72357/diff/1/


Testing
---

Before patch
Environment : Kerberos 

we will see lots of warning message as mentioned below.

2020-04-07 00:25:31,718 WARN 
org.apache.hadoop.security.authentication.util.KerberosName: auth_to_local rule 
mechanism not set.Using default of hadoop

After patch 
Expected: above warning log should not appear anymore.


Thanks,

Dineshkumar Yadav

[jira] [Commented] (RANGER-2754) Update presto dependency and implement row/column level security

[Kashif Kazi (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2754?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17083912#comment-17083912
 ] 

Kashif Kazi commented on RANGER-2754:
-

[~bolke] Can you help me out how to apply this patch in existaing HDP/Apache 
Ranger?

> Update presto dependency and implement row/column level security
> 
>
> Key: RANGER-2754
> URL: https://issues.apache.org/jira/browse/RANGER-2754
> Project: Ranger
>  Issue Type: Improvement
>  Components: plugins
>Affects Versions: master
>Reporter: Bolke de Bruin
>Assignee: Bolke de Bruin
>Priority: Major
> Attachments: 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> 0001-RANGER-2754-Upgrade-presto-dependency-and-improve-lo.patch, 
> RANGER-2754-v2.patch, RANGER-2754.patch
>
>
> 1. PrestoSql has changed its Security API hence the Ranger plugin has stopped 
> working for versions > ~321. 
> 2. Presto master now has row/column level security support



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (RANGER-2705) Group sync does does not parse DNs properly

[Pradeep Agrawal (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2705?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17083897#comment-17083897
 ] 

Pradeep Agrawal commented on RANGER-2705:
-

Patch committed : 
[https://github.com/apache/ranger/commit/6827eb7351708c22d45481fda8cfa61467f60741#diff-d8dc3d69c5f905af1355c0e63418115c]

> Group sync does does not parse DNs properly
> ---
>
> Key: RANGER-2705
> URL: https://issues.apache.org/jira/browse/RANGER-2705
> Project: Ranger
>  Issue Type: Bug
>  Components: usersync
>Reporter: Lars Francke
>Assignee: Sailaja Polavarapu
>Priority: Major
>
> When we have enabled user & group search 
> ({{ranger.usersync.group.search.first.enabled}} = false) we expect Ranger to 
> get the groups and its members and compare them to what already exists.
>  Our DN/CN looks like this:
> {code:java}
>  CN=Francke\, Lars,OU=bla bla. 
> {code}
> Our CN contains a comma but the {{getShortUserName}} method in 
> {{LdapDeltaUserGroupBuilder}} has this piece of code:
> {code:java}
> StringTokenizer stc = new StringTokenizer(longUserName, ",");
> String firstToken = stc.nextToken();{code}
> The intention is that it gets the "{{CN=Francke\, Lars}}" part (the first 
> part of the comma-separated DN) but that doesn't work if that contains a 
> comma itself. It is escaped but Ranger just splits at the comma. That's 
> definitely a bug. It should use the {{LdapName}} class instead and/or parse 
> according to the RFC 2253 but maybe even that is wrong what it really should 
> probably do is the same as user sync?
>  This way we currently cannot use (incremental) group sync at all because if 
> we do we don't get any groups at all as the user search doesn't take its own 
> groups when group sync is also enabled (this was another surprise).
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (RANGER-2395) Add presto plugin

[Kashif Kazi (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2395?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17083876#comment-17083876
 ] 

Kashif Kazi commented on RANGER-2395:
-

Does any idea how to apply the patch for Ranger to be work with Presto331 
(PrrestoSql)
Note: I am trying for HDP Ranger 1.2.0 with HDP 3.1.

> Add presto plugin
> -
>
> Key: RANGER-2395
> URL: https://issues.apache.org/jira/browse/RANGER-2395
> Project: Ranger
>  Issue Type: Improvement
>  Components: plugins
>Reporter: Bolke de Bruin
>Assignee: Bolke de Bruin
>Priority: Major
> Fix For: 2.0.0
>
> Attachments: 0001-Add-Presto-plugin.patch
>
>  Time Spent: 7.5h
>  Remaining Estimate: 0h
>
> Presto (or PrestoDB) is an open source, distributed SQL query engine, 
> designed from the ground up for fast analytic queries against data of any 
> size. It supports both non-relational sources, such as the Hadoop Distributed 
> File System (HDFS), [Amazon S3|https://aws.amazon.com/s3/], Cassandra, 
> MongoDB, and [HBase|https://aws.amazon.com/emr/details/hbase/], and 
> relational data sources such as MySQL, PostgreSQL, [Amazon 
> Redshift|https://aws.amazon.com/redshift/], Microsoft SQL Server, and 
> Teradata.
> This is to track a Ranger plugin for Presto



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (RANGER-2770) Upgrade jackson-databind to version 2.10.0 [CVE-2020-8840] - (Ranger)

[Dineshkumar Yadav (Jira)]

[ 
https://issues.apache.org/jira/browse/RANGER-2770?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17083864#comment-17083864
 ] 

Dineshkumar Yadav commented on RANGER-2770:
---

Upgrade jackson-databind to version 2.9.10.4 as 2.10.0 has some issue.

> Upgrade jackson-databind to version 2.10.0 [CVE-2020-8840] - (Ranger)
> -
>
> Key: RANGER-2770
> URL: https://issues.apache.org/jira/browse/RANGER-2770
> Project: Ranger
>  Issue Type: Improvement
>  Components: Ranger
>Reporter: Dineshkumar Yadav
>Assignee: Dineshkumar Yadav
>Priority: Major
> Attachments: 
> 0001-RANGER-2770-Upgrade-jackson-databind-to-version-2.10.patch
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)