[jira] [Updated] (RANGER-4693) IS_IN_ANY_GROUP and IS_NOT_IN_ANY_GROUP attributes are not working as expected

Thu, 08 Feb 2024 02:02:38 -0800 


     [ 
https://issues.apache.org/jira/browse/RANGER-4693?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Himanshu Maurya updated RANGER-4693:
------------------------------------
    Description: 
Use-Case:

Create a hive database and table using hive user
 * Database - "login_data"
 * Table - “login_table”

Create a hive policy ::

!Screenshot 2024-02-08 at 1.25.40 PM.png|width=647,height=311!

 

“user1” which is part of “group1” and

“user2” which is not part of any group

 

Run “select * from login_table" using user “user1” ==> expected behaviour => 
allowed =>  working

Run “select * from login_table" using user “user2” ==> expected behaviour => 
denied => not working ==> “user2” should not allowed to run select query

  was:
Use-Case:

Create a hive database and table using hive user
 * Database - "login_data"
 * Table - “login_table”

Create a hive policy ::

!Screenshot 2024-02-08 at 1.25.40 PM.png|width=647,height=311!

 

“user1” which is part of “group1” and

“user2” which is not part of any group

 

Run “select * from login_table" using user “user1” ==> expected behavior => 
allowed =>  working

Run “select * from login_table" using user “user2” ==> expected behavior => 
denied => not working ==> “user2” should not allowed to run select query


> IS_IN_ANY_GROUP and IS_NOT_IN_ANY_GROUP attributes are not working as expected
> ------------------------------------------------------------------------------
>
>                 Key: RANGER-4693
>                 URL: https://issues.apache.org/jira/browse/RANGER-4693
>             Project: Ranger
>          Issue Type: Bug
>          Components: Ranger
>            Reporter: Himanshu Maurya
>            Assignee: Himanshu Maurya
>            Priority: Major
>         Attachments: Screenshot 2024-02-08 at 1.25.40 PM.png
>
>
> Use-Case:
> Create a hive database and table using hive user
>  * Database - "login_data"
>  * Table - “login_table”
> Create a hive policy ::
> !Screenshot 2024-02-08 at 1.25.40 PM.png|width=647,height=311!
>  
> “user1” which is part of “group1” and
> “user2” which is not part of any group
>  
> Run “select * from login_table" using user “user1” ==> expected behaviour => 
> allowed =>  working
> Run “select * from login_table" using user “user2” ==> expected behaviour => 
> denied => not working ==> “user2” should not allowed to run select query



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to