[
https://issues.apache.org/jira/browse/RANGER-2176?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16563118#comment-16563118
]
t oo commented on RANGER-2176:
------------------------------
cc: [~bosco] [~nitin.galave]
> Ranger allows standard user (not admin) to create/edit/delete policies under
> an existing HIVE service
> -----------------------------------------------------------------------------------------------------
>
> Key: RANGER-2176
> URL: https://issues.apache.org/jira/browse/RANGER-2176
> Project: Ranger
> Issue Type: Bug
> Components: admin, Ranger
> Affects Versions: 1.0.0
> Reporter: t oo
> Priority: Blocker
>
> # Login as an admin user
> # Create a HIVE service, create some access and masking policies under the
> service.
> # Logout of the admin user
> # Login as a standard user (one without admin role)
> # Click the HIVE service
> # Notice how add policy button is present, edit/delete policy buttons are
> present and clicking through them actually allows you to add/update/delete
> policies!
> Expected behaviour is that policies are read-only to a standard user (without
> admin role) and policies can't be created as that user.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
