trx_log API not accessible by keyadmin user

Pradeep Agrawal (Jira) Mon, 08 Jan 2024 06:25:23 -0800


     [ 
https://issues.apache.org/jira/browse/RANGER-4573?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Pradeep Agrawal updated RANGER-4573:
------------------------------------
    Attachment: 0012-RANGER-4573-xaudit-trx_log-API-not-accessible-by-key.patch

> /xaudit/trx_log API not accessible by keyadmin user
> ---------------------------------------------------
>
>                 Key: RANGER-4573
>                 URL: https://issues.apache.org/jira/browse/RANGER-4573
>             Project: Ranger
>          Issue Type: Bug
>          Components: Ranger
>            Reporter: Abhishek
>            Assignee: Pradeep Agrawal
>            Priority: Major
>         Attachments: 
> 0012-RANGER-4573-xaudit-trx_log-API-not-accessible-by-key.patch
>
>
> {color:#172b4d}If a keyadmin user makes a request to /xaudit/trx_log API 
> endpoint,{color}
> {color:#172b4d}the response is 403 forbidden.{color}
> {color:#172b4d}However, the same function used in /xaudit/trx_log is called 
> by the /assets/report API,{color}
> {color:#172b4d}and the /assets/report API is accessible by the keyadmin user, 
> so ideally, the /xaudit/trx_log API should be accessible 
> {color}{color:#172b4d}by the keyadmin user as well.{color}



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (RANGER-4573) /xaudit/trx_log API not accessible by keyadmin user

Reply via email to