----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/72617/#review221097 -----------------------------------------------------------
Ship it! Ship It! - bhavik patel On June 24, 2020, 8:34 a.m., Pradeep Agrawal wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/72617/ > ----------------------------------------------------------- > > (Updated June 24, 2020, 8:34 a.m.) > > > Review request for ranger, Ankita Sinha, Don Bosco Durai, bhavik patel, Colm > O hEigeartaigh, Gautam Borad, Jayendra Parab, Abhay Kulkarni, Madhan > Neethiraj, Mehul Parikh, Nikhil P, Nitin Galave, pengjianhua, Ramesh Mani, > Selvamohan Neethiraj, Sailaja Polavarapu, Velmurugan Periasamy, Qiang Zhang, > and Zsombor Gegesy. > > > Bugs: RANGER-2872 > https://issues.apache.org/jira/browse/RANGER-2872 > > > Repository: ranger > > > Description > ------- > > **Problem Statement:** In Elastic search plugin group ACL is not working. > When a user is in a group and user is not added in the ranger elasticsearch > policy but group is added in the policy then user request to elasticsearch > API fails. > > **Proposed Solution:** Currently groups value null is being passed in > checkPermission method, hence user's group should be loaded from hadoop ugi > for the logged in user. > > > Diffs > ----- > > > plugin-elasticsearch/src/main/java/org/apache/ranger/authorization/elasticsearch/authorizer/RangerElasticsearchAuthorizer.java > f5201cec4 > > > Diff: https://reviews.apache.org/r/72617/diff/1/ > > > Testing > ------- > > > Thanks, > > Pradeep Agrawal > >
