[
https://issues.apache.org/jira/browse/RANGER-4177?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Madhan Neethiraj updated RANGER-4177:
-------------------------------------
Attachment: RANGER-4177.patch
> policy create/update should fail when it references non-existing
> user/group/role
> --------------------------------------------------------------------------------
>
> Key: RANGER-4177
> URL: https://issues.apache.org/jira/browse/RANGER-4177
> Project: Ranger
> Issue Type: Bug
> Components: admin
> Affects Versions: 2.3.0, 2.4.0
> Reporter: Madhan Neethiraj
> Assignee: Madhan Neethiraj
> Priority: Major
> Fix For: 3.0.0, 2.4.1
>
> Attachments: RANGER-4177.patch
>
>
> During create/update of a policy, non-existing users/groups/roles referenced
> in the policy are automatically created in Ranger. This is a regression
> introduced in RANGER-3562; prior to this change, such policy create/update
> attempts would fail.
> To retain backward compatibility, the change in behavior should be effective
> only when a flag is specified during policy create/update operation i.e. by
> default the operation should fail when the policy references non-existing
> users/groups/roles.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
