-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/74480/
-----------------------------------------------------------

Review request for ranger, madhan, Madhan Neethiraj, and Ramesh Mani.


Bugs: RANGER-4291
    https://issues.apache.org/jira/browse/RANGER-4291


Repository: ranger


Description
-------

ROW_FILTER policies are supported for Hive service type. For a Hive resource 
being authorized, if a ROW_FILTER  policy's resource-specification are matched 
but none of the policy-items match, then effectively the policy did not match. 
However, if the policy has audit enabled, then an audit log record is created 
with Access Type=ROW_FILTER and Result=Denied.

This is a spurious and misleading audit record, and it should not be generated.


Diffs
-----

  
hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuditHandler.java
 af991962f 


Diff: https://reviews.apache.org/r/74480/diff/1/


Testing
-------

Ran all unit tests successfully.


Thanks,

Abhay Kulkarni

Reply via email to