[
https://issues.apache.org/jira/browse/RANGER-4693?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17816288#comment-17816288
]
Himanshu Maurya commented on RANGER-4693:
-----------------------------------------
Hi [~madhan],
After debugging this issue I have observed that user2 is not a part of any
group in ranger admin but in the linux/kernel it is showing as part of two
groups (with group IDs as 100000 and 309) due to which it is giving unexpected
behaviour.
> IS_IN_ANY_GROUP and IS_NOT_IN_ANY_GROUP attributes are not working as expected
> ------------------------------------------------------------------------------
>
> Key: RANGER-4693
> URL: https://issues.apache.org/jira/browse/RANGER-4693
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Reporter: Himanshu Maurya
> Assignee: Himanshu Maurya
> Priority: Major
> Attachments: Screenshot 2024-02-08 at 1.25.40 PM.png
>
>
> Use-Case:
> Create a hive database and table using hive user
> * Database - "login_data"
> * Table - “login_table”
> Create a hive policy ::
> !Screenshot 2024-02-08 at 1.25.40 PM.png|width=647,height=311!
>
> “user1” which is part of “group1” and
> “user2” which is not part of any group
>
> Run “select * from login_table" using user “user1” ==> expected behaviour =>
> allowed => working
> Run “select * from login_table" using user “user2” ==> expected behaviour =>
> denied => not working ==> “user2” should not allowed to run select query
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
