-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/74480/
-----------------------------------------------------------
Review request for ranger, madhan, Madhan Neethiraj, and Ramesh Mani.
Bugs: RANGER-4291
https://issues.apache.org/jira/browse/RANGER-4291
Repository: ranger
Description
-------
ROW_FILTER policies are supported for Hive service type. For a Hive resource
being authorized, if a ROW_FILTER policy's resource-specification are matched
but none of the policy-items match, then effectively the policy did not match.
However, if the policy has audit enabled, then an audit log record is created
with Access Type=ROW_FILTER and Result=Denied.
This is a spurious and misleading audit record, and it should not be generated.
Diffs
-----
hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuditHandler.java
af991962f
Diff: https://reviews.apache.org/r/74480/diff/1/
Testing
-------
Ran all unit tests successfully.
Thanks,
Abhay Kulkarni