incubator-ranger git commit: RANGER-1088: Logging the denied event before discarding for getTableDescriptor in hbase plugin.

Fri, 08 Jul 2016 16:28:51 -0700 

Repository: incubator-ranger
Updated Branches:
  refs/heads/master c0785ed49 -> 4b7a1a767


RANGER-1088: Logging the denied event before discarding for getTableDescriptor 
in hbase plugin.

Signed-off-by: Velmurugan Periasamy <[email protected]>


Project: http://git-wip-us.apache.org/repos/asf/incubator-ranger/repo
Commit: http://git-wip-us.apache.org/repos/asf/incubator-ranger/commit/4b7a1a76
Tree: http://git-wip-us.apache.org/repos/asf/incubator-ranger/tree/4b7a1a76
Diff: http://git-wip-us.apache.org/repos/asf/incubator-ranger/diff/4b7a1a76

Branch: refs/heads/master
Commit: 4b7a1a767211e1ee90348d9806877d4365262543
Parents: c0785ed
Author: Sailaja Polavarapu <[email protected]>
Authored: Thu Jul 7 22:49:26 2016 -0700
Committer: Velmurugan Periasamy <[email protected]>
Committed: Fri Jul 8 19:28:07 2016 -0400

----------------------------------------------------------------------
 .../authorization/hbase/RangerAuthorizationCoprocessor.java   | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/incubator-ranger/blob/4b7a1a76/hbase-agent/src/main/java/org/apache/ranger/authorization/hbase/RangerAuthorizationCoprocessor.java
----------------------------------------------------------------------
diff --git 
a/hbase-agent/src/main/java/org/apache/ranger/authorization/hbase/RangerAuthorizationCoprocessor.java
 
b/hbase-agent/src/main/java/org/apache/ranger/authorization/hbase/RangerAuthorizationCoprocessor.java
index 02d8163..ac5f1e4 100644
--- 
a/hbase-agent/src/main/java/org/apache/ranger/authorization/hbase/RangerAuthorizationCoprocessor.java
+++ 
b/hbase-agent/src/main/java/org/apache/ranger/authorization/hbase/RangerAuthorizationCoprocessor.java
@@ -1097,8 +1097,13 @@ public class RangerAuthorizationCoprocessor extends 
RangerAuthorizationCoprocess
                                String tableName = 
htd.getTableName().getNameAsString();
                                
session.table(tableName).buildRequest().authorize();
                                if (!session.isAuthorized()) {
+                                       List<AuthzAuditEvent> events = null;
                                        itr.remove();
-                                       
auditHandler.getAndDiscardMostRecentEvent();
+                                       AuthzAuditEvent event = 
auditHandler.getAndDiscardMostRecentEvent();
+                                       if (event != null) {
+                                               events = 
Lists.newArrayList(event);
+                                       }
+                                       auditHandler.logAuthzAudits(events);
                                }
                        }
                        if (descriptors.size() > 0) {

Reply via email to