[jira] [Updated] (RANGER-3493) Add unique index on service and resource_signature column of x_policy table
[ https://issues.apache.org/jira/browse/RANGER-3493?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Pradeep Agrawal updated RANGER-3493: Attachment: 0001-RANGER-3493-Add-unique-index-on-service-and-resource.patch > Add unique index on service and resource_signature column of x_policy table > --- > > Key: RANGER-3493 > URL: https://issues.apache.org/jira/browse/RANGER-3493 > Project: Ranger > Issue Type: Sub-task > Components: Ranger >Affects Versions: 3.0.0 >Reporter: Pradeep Agrawal >Assignee: Pradeep Agrawal >Priority: Major > Fix For: 3.0.0 > > Attachments: > 0001-RANGER-3493-Add-unique-index-on-service-and-resource.patch > > -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Updated] (RANGER-3503) Make "hadoop.security.authorization" config as an optional config in cm_ozone service definition
[ https://issues.apache.org/jira/browse/RANGER-3503?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Sailaja Polavarapu updated RANGER-3503: --- Fix Version/s: 3.0.0 > Make "hadoop.security.authorization" config as an optional config in cm_ozone > service definition > > > Key: RANGER-3503 > URL: https://issues.apache.org/jira/browse/RANGER-3503 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Sailaja Polavarapu >Assignee: Sailaja Polavarapu >Priority: Major > Fix For: 3.0.0 > > Attachments: > 0001-RANGER-3503-Updated-Ozone-servicedef-to-make-hadoop..patch > > > Today, the "hadoop.security.authorization" config is defined as mandatory in > cm_ozone service def, which prevents Ozone Ranger plugin to be setup in a > pure Ozone cluster (without HDFS) when "hadoop.security.authorization" is set > to empty. -- This message was sent by Atlassian Jira (v8.20.1#820001)
Re: Review Request 73696: RANGER-3508: enhanced script condition expression for easier access to user/group/tag/resource attributes
---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73696/
---
(Updated Nov. 10, 2021, 11:02 p.m.)
Review request for ranger, Abhishek Kumar, Ankita Sinha, Kishor Gollapalliwar,
Abhay Kulkarni, Mehul Parikh, Ramesh Mani, Sailaja Polavarapu, and Velmurugan
Periasamy.
Bugs: RANGER-3508
https://issues.apache.org/jira/browse/RANGER-3508
Repository: ranger
Description
---
Updated script evaluator to enable access to user/group/tag/resource attributes
with following expressions:
- USER.state == 'CA'
- UGROUP['test'].dept == 'MKTG'
- REQ.accessType == 'SELECT'
- RES.database == 'hr'
- RES.table == 'employee'
- TAG._type == 'PII'
- TAG.attr1 == 'value1'
- TAGS.length == 2
- TNAMES.indexOf('PCI') != -1
Diffs (updated)
-
agents-common/src/main/java/org/apache/ranger/plugin/conditionevaluator/RangerAnyOfExpectedTagsPresentConditionEvaluator.java
3221f79d5
agents-common/src/main/java/org/apache/ranger/plugin/conditionevaluator/RangerNoneOfExpectedTagsPresentConditionEvaluator.java
d04f4b388
agents-common/src/main/java/org/apache/ranger/plugin/conditionevaluator/RangerScriptConditionEvaluator.java
e57f599d7
agents-common/src/main/java/org/apache/ranger/plugin/conditionevaluator/RangerScriptExecutionContext.java
3563fd8e2
agents-common/src/main/java/org/apache/ranger/plugin/conditionevaluator/RangerTagsAllPresentConditionEvaluator.java
8616c6660
agents-common/src/main/java/org/apache/ranger/plugin/service/RangerBasePlugin.java
57a4b4bd5
agents-common/src/main/java/org/apache/ranger/plugin/util/RangerCommonConstants.java
75132d800
agents-common/src/test/java/org/apache/ranger/plugin/conditionevaluator/RangerCustomConditionMatcherTest.java
9f3fb23df
agents-common/src/test/java/org/apache/ranger/plugin/conditionevaluator/RangerRequestScriptEvaluatorTest.java
PRE-CREATION
Diff: https://reviews.apache.org/r/73696/diff/3/
Changes: https://reviews.apache.org/r/73696/diff/2-3/
Testing
---
- added unit tests to validate new expressions
- verified that existing unit tests pass successfully
Thanks,
Madhan Neethiraj
Re: Review Request 73678: RANGER-3503: Make "hadoop.security.authorization" config as an optional config in cm_ozone service definition
--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/73678/#review223722 --- Ship it! Ship It! - Ramesh Mani On Nov. 2, 2021, 2:05 a.m., Sailaja Polavarapu wrote: > > --- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/73678/ > --- > > (Updated Nov. 2, 2021, 2:05 a.m.) > > > Review request for ranger, Abhay Kulkarni, Mehul Parikh, Pradeep Agrawal, > Ramesh Mani, and Velmurugan Periasamy. > > > Bugs: RANGER-3503 > https://issues.apache.org/jira/browse/RANGER-3503 > > > Repository: ranger > > > Description > --- > > Updated Ozone servicedef to make hadoop.security.authorization config an > optional property. Also added corresponding upgrade patch. > > > Diffs > - > > agents-common/src/main/resources/service-defs/ranger-servicedef-ozone.json > 7bbfeeb7b > security-admin/db/mysql/optimized/current/ranger_core_db_mysql.sql > c9cb79b73 > security-admin/db/oracle/optimized/current/ranger_core_db_oracle.sql > 581ffe381 > security-admin/db/postgres/optimized/current/ranger_core_db_postgres.sql > 960681a22 > > security-admin/db/sqlanywhere/optimized/current/ranger_core_db_sqlanywhere.sql > 079574985 > security-admin/db/sqlserver/optimized/current/ranger_core_db_sqlserver.sql > 5048ea901 > > security-admin/src/main/java/org/apache/ranger/patch/PatchForOzoneServiceDefConfigUpdate_J10051.java > PRE-CREATION > > > Diff: https://reviews.apache.org/r/73678/diff/1/ > > > Testing > --- > > 1. Verified manually updating the service def with the changes. > 2. Also patched cluster with upgrade patch and verified the patch is applied > successfuly during initial ranger setup. > > > Thanks, > > Sailaja Polavarapu > >
Re: Review Request 73685: RANGER-3505: Ranger usersync fails to sync users when a duplicate user exists in ranger
--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/73685/#review223721 --- Ship it! Ship It! - Pradeep Agrawal On Nov. 3, 2021, 10:59 p.m., Sailaja Polavarapu wrote: > > --- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/73685/ > --- > > (Updated Nov. 3, 2021, 10:59 p.m.) > > > Review request for ranger, Abhay Kulkarni, Mehul Parikh, Pradeep Agrawal, > Ramesh Mani, and Velmurugan Periasamy. > > > Bugs: RANGER-3505 > https://issues.apache.org/jira/browse/RANGER-3505 > > > Repository: ranger > > > Description > --- > > modified code to ignore case while validating a user for update > > > Diffs > - > > security-admin/src/main/java/org/apache/ranger/service/XUserService.java > f22bcec75 > > > Diff: https://reviews.apache.org/r/73685/diff/1/ > > > Testing > --- > > Patched cluster with Mysql DB as backed for ranger and verified few test > cases. > Also verified with postgres DB as backend for ranger for quick regression > tests. > > > Thanks, > > Sailaja Polavarapu > >
[jira] [Commented] (RANGER-3422) Dereferencing possible null pointer in MySQLPLRunner.java
[ https://issues.apache.org/jira/browse/RANGER-3422?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17441678#comment-17441678 ] Mallika Gogoi commented on RANGER-3422: --- Apache RR raised : https://reviews.apache.org/r/73703/ > Dereferencing possible null pointer in MySQLPLRunner.java > - > > Key: RANGER-3422 > URL: https://issues.apache.org/jira/browse/RANGER-3422 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Assignee: Mallika Gogoi >Priority: Minor > > Dereferencing possible null pointer on line 242 and line 247 in > MySQLPLRunner.java can crash the program. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Updated] (RANGER-3422) Dereferencing possible null pointer in MySQLPLRunner.java
[ https://issues.apache.org/jira/browse/RANGER-3422?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mallika Gogoi updated RANGER-3422: -- Summary: Dereferencing possible null pointer in MySQLPLRunner.java (was: Dereferencing possible null pointer) > Dereferencing possible null pointer in MySQLPLRunner.java > - > > Key: RANGER-3422 > URL: https://issues.apache.org/jira/browse/RANGER-3422 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Priority: Minor > > Dereferencing possible null pointer on line 242 and line 247 in > MySQLPLRunner.java can crash the program. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Assigned] (RANGER-3422) Dereferencing possible null pointer in MySQLPLRunner.java
[ https://issues.apache.org/jira/browse/RANGER-3422?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mallika Gogoi reassigned RANGER-3422: - Assignee: Mallika Gogoi > Dereferencing possible null pointer in MySQLPLRunner.java > - > > Key: RANGER-3422 > URL: https://issues.apache.org/jira/browse/RANGER-3422 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Assignee: Mallika Gogoi >Priority: Minor > > Dereferencing possible null pointer on line 242 and line 247 in > MySQLPLRunner.java can crash the program. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Assigned] (RANGER-3426) Null Dereference in agents-audit
[ https://issues.apache.org/jira/browse/RANGER-3426?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mallika Gogoi reassigned RANGER-3426: - Assignee: Mallika Gogoi > Null Dereference in agents-audit > > > Key: RANGER-3426 > URL: https://issues.apache.org/jira/browse/RANGER-3426 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Assignee: Mallika Gogoi >Priority: Minor > > Dereferencing null pointer in AuditFileSpool.java: 701 and > AuditFileCacheProviderSpool.java: 715. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Commented] (RANGER-3426) Null Dereference in agents-audit
[ https://issues.apache.org/jira/browse/RANGER-3426?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17441637#comment-17441637 ] Mallika Gogoi commented on RANGER-3426: --- Apache RR raised: https://reviews.apache.org/r/73702/ > Null Dereference in agents-audit > > > Key: RANGER-3426 > URL: https://issues.apache.org/jira/browse/RANGER-3426 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Priority: Minor > > Dereferencing null pointer in AuditFileSpool.java: 701 and > AuditFileCacheProviderSpool.java: 715. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Assigned] (RANGER-3427) Null Dereference in PublicApis.java
[ https://issues.apache.org/jira/browse/RANGER-3427?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mallika Gogoi reassigned RANGER-3427: - Assignee: Mallika Gogoi > Null Dereference in PublicApis.java > --- > > Key: RANGER-3427 > URL: https://issues.apache.org/jira/browse/RANGER-3427 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Assignee: Mallika Gogoi >Priority: Minor > > Dereferecing null pointer in PublicAPIs.java: line numbers 282,317,368. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Commented] (RANGER-3427) Null Dereference in PublicApis.java
[ https://issues.apache.org/jira/browse/RANGER-3427?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17441608#comment-17441608 ] Mallika Gogoi commented on RANGER-3427: --- Apache RR raised : https://reviews.apache.org/r/73701/ > Null Dereference in PublicApis.java > --- > > Key: RANGER-3427 > URL: https://issues.apache.org/jira/browse/RANGER-3427 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Assignee: Mallika Gogoi >Priority: Minor > > Dereferecing null pointer in PublicAPIs.java: line numbers 282,317,368. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Assigned] (RANGER-3424) Dereferencing possible null pointer in HBaseClient.java
[ https://issues.apache.org/jira/browse/RANGER-3424?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Mallika Gogoi reassigned RANGER-3424: - Assignee: Mallika Gogoi > Dereferencing possible null pointer in HBaseClient.java > --- > > Key: RANGER-3424 > URL: https://issues.apache.org/jira/browse/RANGER-3424 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Assignee: Mallika Gogoi >Priority: Minor > > Dereferencing possible null pointer in HBaseClient.java: 305, 431. > Also related dereferencing present in HBaseResourceMgr.java: 153. -- This message was sent by Atlassian Jira (v8.20.1#820001)
[jira] [Commented] (RANGER-3424) Dereferencing possible null pointer in HBaseClient.java
[ https://issues.apache.org/jira/browse/RANGER-3424?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17441585#comment-17441585 ] Mallika Gogoi commented on RANGER-3424: --- Apache RR raised : https://reviews.apache.org/r/73699/ > Dereferencing possible null pointer in HBaseClient.java > --- > > Key: RANGER-3424 > URL: https://issues.apache.org/jira/browse/RANGER-3424 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Abhishek Kumar >Assignee: Mallika Gogoi >Priority: Minor > > Dereferencing possible null pointer in HBaseClient.java: 305, 431. > Also related dereferencing present in HBaseResourceMgr.java: 153. -- This message was sent by Atlassian Jira (v8.20.1#820001)
