----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/74480/#review225552 -----------------------------------------------------------
Ship it! Ship It! - Madhan Neethiraj On June 16, 2023, 5:44 p.m., Abhay Kulkarni wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/74480/ > ----------------------------------------------------------- > > (Updated June 16, 2023, 5:44 p.m.) > > > Review request for ranger, madhan, Madhan Neethiraj, and Ramesh Mani. > > > Bugs: RANGER-4291 > https://issues.apache.org/jira/browse/RANGER-4291 > > > Repository: ranger > > > Description > ------- > > ROW_FILTER policies are supported for Hive service type. For a Hive resource > being authorized, if a ROW_FILTER policy's resource-specification are > matched but none of the policy-items match, then effectively the policy did > not match. However, if the policy has audit enabled, then an audit log record > is created with Access Type=ROW_FILTER and Result=Denied. > > This is a spurious and misleading audit record, and it should not be > generated. > > > Diffs > ----- > > > hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuditHandler.java > af991962f > > > Diff: https://reviews.apache.org/r/74480/diff/1/ > > > Testing > ------- > > Ran all unit tests successfully. > > > Thanks, > > Abhay Kulkarni > >
