Abhishek Shukla created RANGER-3258:
---------------------------------------
Summary: Update default hbase audit filters to filter out unwanted
audits
Key: RANGER-3258
URL: https://issues.apache.org/jira/browse/RANGER-3258
Project: Ranger
Issue Type: Improvement
Components: audit
Affects Versions: 2.2.0
Reporter: Abhishek Shukla
Can we update the default HBase audit filters as follows:
This will filter out HBase audits related to default, hbase, atlas_janus,
ATLAS_ENTITY_AUDIT_EVENTS table access by hbase service user.
{code:java}
[
{
"accessResult":"DENIED",
"isAudited":true
},
{
"resources":{
"table":{
"values":[
"*-ROOT-*",
"*.META.*",
"*_acl_*",
"hbase:meta",
"hbase:acl",
"default",
"hbase"
]
}
},
"users":[
"hbase"
],
"isAudited":false
},
{
"resources":{
"table":{
"values":[
"atlas_janus",
"ATLAS_ENTITY_AUDIT_EVENTS"
]
},
"column-family":{
"values":[
"*"
]
},
"column":{
"values":[
"*"
]
}
},
"users":[
"atlas",
"hbase"
],
"isAudited":false
},
{
"users":[
"hbase"
],
"actions":[
"balance"
],
"isAudited":false
}
]
{code}
cc [~dineshkumar-yadav]
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
