[
https://issues.apache.org/jira/browse/RANGER-2474?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Ramesh Mani updated RANGER-2474:
--------------------------------
Attachment: 0001-RANGER-2474-Policy-version-and-details-in-access-aud.patch
> Policy version and details in access audits wrong when deny condition added
> to policy
> -------------------------------------------------------------------------------------
>
> Key: RANGER-2474
> URL: https://issues.apache.org/jira/browse/RANGER-2474
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Affects Versions: 2.0.0
> Reporter: suja s
> Assignee: Ramesh Mani
> Priority: Major
> Attachments:
> 0001-RANGER-2474-Policy-version-and-details-in-access-aud.patch
>
>
> Scenario:
> Create a ranger hive policy for a test table for select access - version1
> Perform select - operation successful (done for impala)
> Validate access audits - policy version is 1, clicking on policyid shows
> details of policy at version1
> Edit the policy to include and an additional policy item under allow or a new
> condition under allow exception or deny exception (not under deny)
> Perform operation
> Validate access audits - policy version is 2, clicking on policyid shows
> details of policy at version2
> Edit the policy to include a deny condition
> Perform operation
> Validate access audits - policy version is 1, clicking on policyid shows
> details of policy at version1 though enforcement happens as per policy
> version3
> Note - Versioning is back to normal when deny condition is removed
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
