Re: Review Request 73129: RANGER-3148:Ranger auditing not happening for hdfs chown and chmod operations

Ramesh Mani Tue, 23 Mar 2021 23:36:35 -0700

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/73129/
-----------------------------------------------------------


(Updated March 24, 2021, 6:36 a.m.)


Review request for ranger, Don Bosco Durai, Abhay Kulkarni, Madhan Neethiraj, 
Mehul Parikh, Selvamohan Neethiraj, Sailaja Polavarapu, and Velmurugan 
Periasamy.


Changes
-------

Fixed Review comments. Addressed audit logging for SuperUser.


Bugs: RANGER-3148
    https://issues.apache.org/jira/browse/RANGER-3148


Repository: ranger


Description
-------

RANGER-3148:Ranger auditing not happening for hdfs chown and chmod operations


Diffs (updated)
-----

  
agents-common/src/main/java/org/apache/ranger/authorization/hadoop/constants/RangerHadoopConstants.java
 31e4c0f4e 
  
hdfs-agent/src/main/java/org/apache/ranger/authorization/hadoop/RangerHdfsAuthorizer.java
 63e84728d 


Diff: https://reviews.apache.org/r/73129/diff/5/

Changes: https://reviews.apache.org/r/73129/diff/4-5/


Testing (updated)
-------

- Verified in local vm for auditing.
- Following operations and its auditing are covered.

1) chmod ->  Allow and deny gets audited fine for all the calls.
2) chown  -> Deny gets audited for the file not owned by the same user who runs 
the command.
3) Addressed audit log for SuperUsers.


Thanks,

Ramesh Mani

Re: Review Request 73129: RANGER-3148:Ranger auditing not happening for hdfs chown and chmod operations

Reply via email to