(ranger) 05/10: RANGER-5501: fix missing accessType in audit logs generated by RangerEmbeddedAuthorizer (#859)

Tue, 03 Mar 2026 23:12:09 -0800 

This is an automated email from the ASF dual-hosted git repository.

madhan pushed a commit to branch ranger-2.8
in repository https://gitbox.apache.org/repos/asf/ranger.git

commit c3a23df5635bb25af523a9587a32461999edcfcd
Author: Madhan Neethiraj <[email protected]>
AuthorDate: Tue Feb 24 22:23:03 2026 -0800

    RANGER-5501: fix missing accessType in audit logs generated by 
RangerEmbeddedAuthorizer (#859)
    
    (cherry picked from commit 6422a6ee2acff49dfe82416b6b03c67e88ee51e5)
---
 .../org/apache/ranger/authz/embedded/RangerAuthzPlugin.java    | 10 +++++++---
 1 file changed, 7 insertions(+), 3 deletions(-)

diff --git 
a/authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerAuthzPlugin.java
 
b/authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerAuthzPlugin.java
index ba0a55af7..5b66168bc 100644
--- 
a/authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerAuthzPlugin.java
+++ 
b/authz-embedded/src/main/java/org/apache/ranger/authz/embedded/RangerAuthzPlugin.java
@@ -96,7 +96,7 @@ public RangerAuthzResult authorize(RangerAuthzRequest 
request, RangerAuthzAuditH
         RangerAccessResource    resource      = 
getResource(access.getResource().getName(), 
access.getResource().getAttributes());
         RangerAccessRequestImpl accessRequest = new 
RangerAccessRequestImpl(resource, null, userInfo.getName(), 
userInfo.getGroups(), userInfo.getRoles());
 
-        initializeRequest(accessRequest, context);
+        initializeRequest(accessRequest, access, context);
 
         boolean hasDeny          = false;
         boolean hasAllow         = false;
@@ -160,7 +160,7 @@ public RangerResourcePermissions 
getResourcePermissions(RangerResourceInfo resou
 
         ret.setResource(resource);
         request.setResource(getResource(resource.getName(), null));
-        initializeRequest(request, context);
+        initializeRequest(request, null, context);
 
         RangerResourceACLs acls = plugin.getResourceACLs(request);
 
@@ -234,7 +234,11 @@ private RangerAccessResource 
getSubResource(RangerAccessResource parent, String
         return new RangerAccessResourceImpl(elements, parent.getOwnerUser());
     }
 
-    private void initializeRequest(RangerAccessRequestImpl request, 
RangerAccessContext context) {
+    private void initializeRequest(RangerAccessRequestImpl request, 
RangerAccessInfo access, RangerAccessContext context) {
+        if (access != null) {
+            request.setAction(access.getAction());
+        }
+
         request.setAccessTime(new Date(context.getAccessTime()));
         request.setClientIPAddress(context.getClientIpAddress());
         request.setForwardedAddresses(context.getForwardedIpAddresses());

Reply via email to