Re: Review Request 74304: RANGER-3999: Implement more efficient way to handle _any access authorization - Part 2

Abhay Kulkarni Mon, 13 Feb 2023 11:18:20 -0800

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/74304/
-----------------------------------------------------------


(Updated Feb. 13, 2023, 7:18 p.m.)


Review request for ranger, madhan and Madhan Neethiraj.


Changes
-------

Addressed comment


Bugs: RANGER-3999
    https://issues.apache.org/jira/browse/RANGER-3999


Repository: ranger


Description
-------

This patch addresses the following to an earlier patch for RANGER-3999:
- Add API to request-context to control how multiple resources' evaluation is 
combined to compute composite result (EITHER or EVERY)
- Clean up - use existing APIs where possible
- Explication of "_ANY" access-type to avoid duplicate access-types which have 
implied grants
- Add a few logging messages


Diffs (updated)
-----

  
agents-common/src/main/java/org/apache/ranger/plugin/policyengine/RangerPolicyEngineImpl.java
 4f65d3da2 
  
agents-common/src/main/java/org/apache/ranger/plugin/policyevaluator/RangerDefaultPolicyEvaluator.java
 55752e79c 
  
agents-common/src/main/java/org/apache/ranger/plugin/util/RangerAccessRequestUtil.java
 0ebb9cba5 


Diff: https://reviews.apache.org/r/74304/diff/2/

Changes: https://reviews.apache.org/r/74304/diff/1-2/


Testing
-------

Passed all unit tests


Thanks,

Abhay Kulkarni

Re: Review Request 74304: RANGER-3999: Implement more efficient way to handle _any access authorization - Part 2

Reply via email to