[ https://issues.apache.org/jira/browse/RANGER-4693?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17816288#comment-17816288 ]
Himanshu Maurya commented on RANGER-4693: ----------------------------------------- Hi [~madhan], After debugging this issue I have observed that user2 is not a part of any group in ranger admin but in the linux/kernel it is showing as part of two groups (with group IDs as 100000 and 309) due to which it is giving unexpected behaviour. > IS_IN_ANY_GROUP and IS_NOT_IN_ANY_GROUP attributes are not working as expected > ------------------------------------------------------------------------------ > > Key: RANGER-4693 > URL: https://issues.apache.org/jira/browse/RANGER-4693 > Project: Ranger > Issue Type: Bug > Components: Ranger > Reporter: Himanshu Maurya > Assignee: Himanshu Maurya > Priority: Major > Attachments: Screenshot 2024-02-08 at 1.25.40 PM.png > > > Use-Case: > Create a hive database and table using hive user > * Database - "login_data" > * Table - “login_table” > Create a hive policy :: > !Screenshot 2024-02-08 at 1.25.40 PM.png|width=647,height=311! > > “user1” which is part of “group1” and > “user2” which is not part of any group > > Run “select * from login_table" using user “user1” ==> expected behaviour => > allowed => working > Run “select * from login_table" using user “user2” ==> expected behaviour => > denied => not working ==> “user2” should not allowed to run select query -- This message was sent by Atlassian Jira (v8.20.10#820010)