This is an automated email from the ASF dual-hosted git repository.
pradeep pushed a change to branch RANGER-4076_master
in repository https://gitbox.apache.org/repos/asf/ranger.git
discard 4250eba5c RANGER-4706: Change jdk version to 17 in docker
discard abc467761 RANGER-4706: Migrate from com.sun.jersey 1.x to glassfish
jersey 2.x
discard 44348027f RANGER-4076: Document update for required environment
variable
discard d0244b733 RANGER-4076: Fix TestCase failures in
TestRecordFilterJavaScript
discard 01ea6546f RANGER-4076: Ranger KMS changes for JDK17 build
discard 5e75fa2f6 RANGER-4076: Fix TestCase failures in
RangerRequestScriptEvaluatorTest
discard 800317a66 RANGER-4076: Unix Auth Client remove deprecated APIs
discard c1164a7a0 RANGER-4076: Remove Nashorn Script Engine
discard bf0347b4e RANGER-4076: pom & config changes for jdk17 build
add ae3e53708 RANGER-2713: Remove audit fields from XXPolicyRef objects
(#796)
add 2921ffe5d RANGER-3491: fix error logs while bootstraping service-defs
- TAG service-def not found (#125)
add 6d6bce47f RANGER-5148: fix redundant role cache update in concurrent
scenarios (#538)
add ad4e268f1 RANGER-5442: replace repeated Gson instantiation with
JsonUtils methods (#799)
add ac2ee833d Bump requests from 2.32.3 to 2.32.5 in
/ranger-tools/src/main/python (#587)
add 4e28186b2 Bump jinja2 from 3.1.5 to 3.1.6 in
/ranger-tools/src/main/python (#551)
add f0ef93e36 Bump fonttools from 4.34.4 to 4.61.0 in
/ranger-tools/src/main/python (#756)
add 6de71c0ed RANGER-5434: Docker setup update to support test users in
containers (#787)
add 10f5d07b7 RANGER-5353: Introduce Material for Mkdocs for Apache Ranger
Docs (#793)
add f5ca3ca06 RANGER-5312: authz-embedded (#696)
add bee5e20ce RANGER-5020: Fix duplicate ranger-pmd-ruleset and use
central ruleset in dev-support (#423)
add aeda5d4f3 RANGER-5126: Add workflow to test Ranger Upgrades in Docker
(#610)
add 7fa081002 RANGER-5355: Add content under Project tab (#804)
add 5c48116c2 RANGER-5438 : Upgrade qs, express and node-forge library in
Ranger React UI. (#806)
add 1e1f0db75 RANGER-5441: update Docker setup to support running
Zookeeper with Kerberos (#808)
new a89f8cd5b RANGER-4076: pom & config changes for jdk17 build
new a168b8af9 RANGER-4076: Remove Nashorn Script Engine
new 16217c404 RANGER-4076: Unix Auth Client remove deprecated APIs
new 91e86006a RANGER-4076: Fix TestCase failures in
RangerRequestScriptEvaluatorTest
new bc18b9a39 RANGER-4076: Ranger KMS changes for JDK17 build
new 60d0343b5 RANGER-4076: Fix TestCase failures in
TestRecordFilterJavaScript
new d6bbcc305 RANGER-4076: Document update for required environment
variable
new e189d3819 RANGER-4706: Migrate from com.sun.jersey 1.x to glassfish
jersey 2.x
new 1ecd9a5bc RANGER-4706: Change jdk version to 17 in docker
This update added new revisions after undoing existing revisions.
That is to say, some revisions that were in the old version of the
branch are not in the new version. This situation occurs
when a user --force pushes a change and generates a repository
containing something like this:
* -- * -- B -- O -- O -- O (4250eba5c)
\
N -- N -- N refs/heads/RANGER-4076_master (1ecd9a5bc)
You should already have received notification emails for all of the O
revisions, and so the following emails describe only the N revisions
from the common base, B.
Any revisions marked "omit" are not gone; other references still
refer to them. Any revisions marked "discard" are gone forever.
The 9 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails. The revisions
listed as "add" were already present in the repository and have only
been added to this reference.
Summary of changes:
.github/workflows/docs.yml | 73 ++
.github/workflows/upgrade-ranger.yaml | 93 +++
.../plugin/store/EmbeddedServiceDefsUtil.java | 12 +-
.../ranger/authz/model/RangerAuthzResult.java | 141 +++-
.../authz/util/RangerResourceNameParser.java | 24 +-
.../authz/util/TestRangerResourceNameParser.java | 54 +-
{plugin-kudu => authz-embedded}/pom.xml | 34 +-
.../src/conf/ranger-authz-embedded.properties | 64 ++
.../authz/embedded/RangerAuthzAuditHandler.java | 69 ++
.../ranger/authz/embedded/RangerAuthzConfig.java | 123 +++
.../ranger/authz/embedded/RangerAuthzPlugin.java | 409 ++++++++++
.../authz/embedded/RangerEmbeddedAuthorizer.java | 203 +++++
.../embedded/RangerEmbeddedAuthzErrorCode.java | 63 ++
.../authz/embedded/TestEmbeddedAuthorizer.java | 205 +++++
.../authz/embedded/TestRangerAuthzConfig.java | 231 ++++++
.../src/test/resources/test_hive/README.txt | 26 +
.../test/resources/test_hive/hive_dev_hive.json | 266 +++++++
.../resources/test_hive/hive_dev_hive_gds.json | 112 +++
.../resources/test_hive/hive_dev_hive_tag.json | 24 +
.../test_hive/ranger-embedded-authz.properties | 17 +-
.../src/test/resources/test_hive/tests_authz.json | 829 +++++++++++++++++++++
.../test_hive/tests_resource_permissions.json | 141 ++++
.../src/test/resources/test_s3/README.txt | 23 +
.../test_s3/ranger-embedded-authz.properties | 17 +-
.../src/test/resources/test_s3/s3_dev_s3.json | 139 ++++
.../src/test/resources/test_s3/s3_dev_s3_gds.json | 90 +++
.../test/resources/test_s3/s3_dev_s3_roles.json | 8 +
.../src/test/resources/test_s3/s3_dev_s3_tag.json | 20 +
.../src/test/resources/test_s3/tests_authz.json | 788 ++++++++++++++++++++
.../test/resources/test_s3/tests_multi_authz.json | 114 +++
.../test_s3/tests_resource_permissions.json | 114 +++
dev-support/ranger-docker/.env | 2 +-
dev-support/ranger-docker/Dockerfile.ranger | 4 +-
dev-support/ranger-docker/Dockerfile.ranger-hadoop | 2 +
dev-support/ranger-docker/Dockerfile.ranger-hbase | 2 +
dev-support/ranger-docker/Dockerfile.ranger-hive | 2 +
dev-support/ranger-docker/Dockerfile.ranger-kafka | 2 +
dev-support/ranger-docker/Dockerfile.ranger-kms | 2 +
dev-support/ranger-docker/Dockerfile.ranger-knox | 2 +
dev-support/ranger-docker/Dockerfile.ranger-solr | 3 +-
.../ranger-docker/Dockerfile.ranger-tagsync | 2 +
.../ranger-docker/Dockerfile.ranger-usersync | 2 +
.../ranger-docker/docker-compose.ranger.yml | 7 +
dev-support/ranger-docker/download-ranger.sh | 51 ++
dev-support/ranger-docker/scripts/admin/ranger.sh | 1 +
.../scripts/hadoop/ranger-hadoop-setup.sh | 1 +
.../scripts/hbase/ranger-hbase-setup.sh | 1 +
.../scripts/hive/ranger-hive-setup.sh | 1 +
.../scripts/kafka/ranger-kafka-setup.sh | 1 +
.../ranger-docker/scripts/kdc/entrypoint.sh | 11 +
.../ranger-docker/scripts/kms/ranger-kms.sh | 1 +
.../scripts/knox/ranger-knox-setup.sh | 1 +
.../ranger-docker/scripts/solr/ranger-solr.sh | 3 +-
.../tagsync/ranger-tagsync-install.properties | 0
.../scripts/tagsync/ranger-tagsync.sh | 1 +
.../scripts/usersync/ranger-usersync.sh | 1 +
.../wait_for_testusers_keytab.sh} | 11 +-
dev-support/ranger-docker/scripts/zk/jaas.conf | 8 +
.../zookeeper-with-kerberos.sh} | 18 +-
mkdocs/README.md | 60 ++
.../docs/arch/architecture.md | 5 +-
mkdocs/docs/assets/brand/Satoshi-Variable.ttf | Bin 0 -> 127420 bytes
mkdocs/docs/assets/brand/favicon.ico | Bin 0 -> 15406 bytes
mkdocs/docs/assets/brand/merged-logo.svg | 50 ++
.../docs/assets/brand}/ranger-logo.svg | 0
mkdocs/docs/assets/css/custom.css | 102 +++
mkdocs/docs/assets/css/search-bar.css | 91 +++
mkdocs/docs/assets/css/table.css | 30 +
.../docs/assets/js/typewriter.js | 37 +-
.../docs/blog/blog.md | 5 +-
mkdocs/docs/features/client-interface/intro.md | 29 +
.../docs/features/gds/gds_intro.md | 5 +-
.../docs/features/sec-zone/intro.md | 5 +-
.../docs/getting-started/install.md | 10 +-
mkdocs/docs/getting-started/trino-with-ranger.md | 24 +
mkdocs/docs/index.md | 35 +
mkdocs/docs/overrides/home.html | 135 ++++
.../docs/plugins/trino.md | 5 +-
.../docs/project/asf-index.md | 18 +-
mkdocs/docs/project/contributing.md | 63 ++
mkdocs/docs/project/cve-list.md | 200 +++++
mkdocs/docs/project/java-code-style.md | 140 ++++
mkdocs/docs/project/release-process.md | 415 +++++++++++
mkdocs/docs/release-notes/index.md | 20 +
.../docs/services/admin/service.md | 5 +-
.../docs/services/kms/service.md | 5 +-
.../docs/services/tagsync/service.md | 5 +-
.../docs/services/usersync/service.md | 5 +-
mkdocs/mkdocs.yml | 158 ++++
mkdocs/requirements.txt | 6 +
pom.xml | 5 +
ranger-examples/conditions-enrichers/pom.xml | 14 +
ranger-examples/dev-support/ranger-pmd-ruleset.xml | 121 ---
ranger-examples/distro/pom.xml | 14 +
ranger-examples/plugin-sampleapp/pom.xml | 14 +
ranger-examples/sample-client/pom.xml | 14 +
ranger-examples/sampleapp/pom.xml | 14 +
.../ranger/examples/sampleapp/SampleApp.java | 4 +-
ranger-tools/src/main/python/requirements.txt | 6 +-
.../optimized/current/ranger_core_db_mysql.sql | 97 +--
...7-drop-audit-columns-from-policy-ref-tables.sql | 155 ++++
.../optimized/current/ranger_core_db_oracle.sql | 109 +--
...7-drop-audit-columns-from-policy-ref-tables.sql | 110 +++
.../optimized/current/ranger_core_db_postgres.sql | 109 +--
...7-drop-audit-columns-from-policy-ref-tables.sql | 99 +++
.../current/ranger_core_db_sqlanywhere.sql | 62 +-
...7-drop-audit-columns-from-policy-ref-tables.sql | 248 ++++++
.../optimized/current/ranger_core_db_sqlserver.sql | 151 +---
...7-drop-audit-columns-from-policy-ref-tables.sql | 316 ++++++++
.../org/apache/ranger/biz/PolicyRefUpdater.java | 16 +-
.../java/org/apache/ranger/biz/RoleRefUpdater.java | 10 +-
.../apache/ranger/biz/SecurityZoneRefUpdater.java | 16 +-
.../org/apache/ranger/common/RangerRoleCache.java | 87 ++-
.../org/apache/ranger/db/XXGlobalStateDao.java | 13 +-
.../ranger/entity/XXPolicyRefAccessType.java | 2 +-
.../apache/ranger/entity/XXPolicyRefCondition.java | 2 +-
.../ranger/entity/XXPolicyRefDataMaskType.java | 2 +-
.../org/apache/ranger/entity/XXPolicyRefGroup.java | 4 +-
.../apache/ranger/entity/XXPolicyRefResource.java | 2 +-
.../org/apache/ranger/entity/XXPolicyRefRole.java | 2 +-
.../org/apache/ranger/entity/XXPolicyRefUser.java | 2 +-
.../org/apache/ranger/entity/XXRoleRefGroup.java | 2 +-
.../org/apache/ranger/entity/XXRoleRefRole.java | 2 +-
.../org/apache/ranger/entity/XXRoleRefUser.java | 2 +-
.../ranger/entity/XXSecurityZoneRefGroup.java | 8 +-
.../ranger/entity/XXSecurityZoneRefResource.java | 4 +-
.../ranger/entity/XXSecurityZoneRefService.java | 4 +-
.../ranger/entity/XXSecurityZoneRefTagService.java | 4 +-
.../ranger/entity/XXSecurityZoneRefUser.java | 4 +-
.../apache/ranger/service/XPortalUserService.java | 33 +-
.../src/main/webapp/react-webapp/package-lock.json | 450 ++++++++---
.../src/main/webapp/react-webapp/package.json | 2 +-
.../org/apache/ranger/biz/TestRoleRefUpdater.java | 6 -
.../ranger/biz/TestSecurityZoneRefUpdater.java | 13 -
.../org/apache/ranger/biz/TestServiceDBStore.java | 11 -
.../ranger/service/TestXPortalUserService.java | 48 +-
136 files changed, 7635 insertions(+), 1115 deletions(-)
create mode 100644 .github/workflows/docs.yml
create mode 100644 .github/workflows/upgrade-ranger.yaml
copy {plugin-kudu => authz-embedded}/pom.xml (80%)
create mode 100644 authz-embedded/src/conf/ranger-authz-embedded.properties
create mode 100644
authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerAuthzAuditHandler.java
create mode 100644
authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerAuthzConfig.java
create mode 100644
authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerAuthzPlugin.java
create mode 100644
authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerEmbeddedAuthorizer.java
create mode 100644
authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerEmbeddedAuthzErrorCode.java
create mode 100644
authz-embedded/src/test/java/org/apache/ranger/authz/embedded/TestEmbeddedAuthorizer.java
create mode 100644
authz-embedded/src/test/java/org/apache/ranger/authz/embedded/TestRangerAuthzConfig.java
create mode 100644 authz-embedded/src/test/resources/test_hive/README.txt
create mode 100644
authz-embedded/src/test/resources/test_hive/hive_dev_hive.json
create mode 100644
authz-embedded/src/test/resources/test_hive/hive_dev_hive_gds.json
create mode 100644
authz-embedded/src/test/resources/test_hive/hive_dev_hive_tag.json
copy security-admin/db/mysql/init/create_xa_core_db.sh =>
authz-embedded/src/test/resources/test_hive/ranger-embedded-authz.properties
(73%)
mode change 100755 => 100644
create mode 100644 authz-embedded/src/test/resources/test_hive/tests_authz.json
create mode 100644
authz-embedded/src/test/resources/test_hive/tests_resource_permissions.json
create mode 100644 authz-embedded/src/test/resources/test_s3/README.txt
copy security-admin/db/mysql/init/create_xa_core_db.sh =>
authz-embedded/src/test/resources/test_s3/ranger-embedded-authz.properties (73%)
mode change 100755 => 100644
create mode 100644 authz-embedded/src/test/resources/test_s3/s3_dev_s3.json
create mode 100644 authz-embedded/src/test/resources/test_s3/s3_dev_s3_gds.json
create mode 100644
authz-embedded/src/test/resources/test_s3/s3_dev_s3_roles.json
create mode 100644 authz-embedded/src/test/resources/test_s3/s3_dev_s3_tag.json
create mode 100644 authz-embedded/src/test/resources/test_s3/tests_authz.json
create mode 100644
authz-embedded/src/test/resources/test_s3/tests_multi_authz.json
create mode 100644
authz-embedded/src/test/resources/test_s3/tests_resource_permissions.json
create mode 100755 dev-support/ranger-docker/download-ranger.sh
mode change 100644 => 100755
dev-support/ranger-docker/scripts/tagsync/ranger-tagsync-install.properties
copy dev-support/ranger-docker/{Dockerfile.ranger-trino =>
scripts/wait_for_testusers_keytab.sh} (81%)
create mode 100644 dev-support/ranger-docker/scripts/zk/jaas.conf
copy dev-support/ranger-docker/scripts/{rdbms/init_postgres.sh =>
zk/zookeeper-with-kerberos.sh} (65%)
create mode 100644 mkdocs/README.md
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/arch/architecture.md (92%)
create mode 100644 mkdocs/docs/assets/brand/Satoshi-Variable.ttf
create mode 100644 mkdocs/docs/assets/brand/favicon.ico
create mode 100644 mkdocs/docs/assets/brand/merged-logo.svg
copy {docs/src/site/resources => mkdocs/docs/assets/brand}/ranger-logo.svg
(100%)
create mode 100644 mkdocs/docs/assets/css/custom.css
create mode 100644 mkdocs/docs/assets/css/search-bar.css
create mode 100644 mkdocs/docs/assets/css/table.css
copy
kms/src/main/java/org/apache/hadoop/crypto/key/kms/server/KMSJMXServlet.java =>
mkdocs/docs/assets/js/typewriter.js (56%)
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/blog/blog.md (92%)
create mode 100644 mkdocs/docs/features/client-interface/intro.md
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/features/gds/gds_intro.md (92%)
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/features/sec-zone/intro.md (92%)
copy kms/src/main/webapp/META-INF/context.xml =>
mkdocs/docs/getting-started/install.md (86%)
create mode 100644 mkdocs/docs/getting-started/trino-with-ranger.md
create mode 100644 mkdocs/docs/index.md
create mode 100644 mkdocs/docs/overrides/home.html
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/plugins/trino.md (92%)
copy security-admin/src/main/resources/META-INF/infinispan-cache-config.xml =>
mkdocs/docs/project/asf-index.md (68%)
create mode 100644 mkdocs/docs/project/contributing.md
create mode 100644 mkdocs/docs/project/cve-list.md
create mode 100644 mkdocs/docs/project/java-code-style.md
create mode 100644 mkdocs/docs/project/release-process.md
create mode 100644 mkdocs/docs/release-notes/index.md
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/services/admin/service.md (92%)
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/services/kms/service.md (92%)
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/services/tagsync/service.md (92%)
copy
security-admin/src/main/webapp/META-INF/contextXML/ldap_security_settings.xml
=> mkdocs/docs/services/usersync/service.md (92%)
create mode 100644 mkdocs/mkdocs.yml
create mode 100644 mkdocs/requirements.txt
delete mode 100644 ranger-examples/dev-support/ranger-pmd-ruleset.xml
create mode 100644
security-admin/db/mysql/patches/077-drop-audit-columns-from-policy-ref-tables.sql
create mode 100644
security-admin/db/oracle/patches/077-drop-audit-columns-from-policy-ref-tables.sql
create mode 100644
security-admin/db/postgres/patches/077-drop-audit-columns-from-policy-ref-tables.sql
create mode 100644
security-admin/db/sqlanywhere/patches/077-drop-audit-columns-from-policy-ref-tables.sql
create mode 100644
security-admin/db/sqlserver/patches/077-drop-audit-columns-from-policy-ref-tables.sql