suja s created RANGER-2474:
------------------------------
Summary: Policy version and details in access audits wrong when
deny condition added to policy
Key: RANGER-2474
URL: https://issues.apache.org/jira/browse/RANGER-2474
Project: Ranger
Issue Type: Bug
Components: Ranger
Affects Versions: 2.0.0
Reporter: suja s
Scenario:
Create a ranger hive policy for a test table for select access - version1
Perform select - operation successful (done for impala)
Validate access audits - policy version is 1, clicking on policyid shows
details of policy at version1
Edit the policy to include and an additional policy item under allow or a new
condition under allow exception or deny exception (not under deny)
Perform operation
Validate access audits - policy version is 2, clicking on policyid shows
details of policy at version2
Edit the policy to include a deny condition
Perform operation
Validate access audits - policy version is 1, clicking on policyid shows
details of policy at version1 though enforcement happens as per policy version3
Note - Versioning is back to normal when deny condition is removed
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
