[jira] [Updated] (RANGER-3643) Service config UI to include additional configurations like service.admin.users, service.admin.groups

Fri, 30 May 2025 15:13:28 -0700 


     [ 
https://issues.apache.org/jira/browse/RANGER-3643?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Madhan Neethiraj updated RANGER-3643:
-------------------------------------
    Description: 
Ranger admin and plugins recognize following configurations that allow listed 
users and groups to perform specific operations. Service configuration UI in 
Ranger admin should be updated to list these configurations, with the ability 
to pick users and groups (similar to the policy UI).

 
|| ||Configuration||Label||Description||
|1|service.admin.users|Service Admin Users|listed users can 
create/update/delete/read policies in the service|
|2|service.admin.groups|Service Admin Groups|users in listed grous can 
create/update/delete/read policies in the service|
|3|policy.download.auth.users|Policy download users|listed users can download 
policies in the service|
|4|tag.download.auth.users|Tag download users|listed users can download tags in 
the service|
|5|userstore.download.auth.users|Userstore download users|listed users can 
download user and group details|
|6|ranger.plugin.super.users|Superusers|the plugin grants all accesses on all 
resources to listed users|
|7|ranger.plugin.super.groups|Superuser groups|the plugin grants all accesses 
on all resources to users in listed groups|

 

  was:
Ranger admin and plugins recognize following configurations that allow listed 
users and groups to perform specific operations. Service configuration UI in 
Ranger admin should be updated to list these configurations, with the ability 
to pick users and groups (similar to the policy UI).

 
|| ||Configuration||Label||Description||
|1|service.admin.users|Service Admin Users|listed users can 
create/update/delete/read policies in the service|
|2|service.admin.groups|Service Admin Groups|users in listed grous can 
create/update/delete/read policies in the service|
|3|policy.download.auth.users|Policy download users|listed users can download 
policies in the service|
|4|policy.grantrevoke.auth.users|Policy grant/revoke users|listed users can 
call grant/revoke APIs to update policies in the service|
|5|tag.download.auth.users|Tag download users|listed users can download tags in 
the service|
|6|userstore.download.auth.users|Userstore download users|listed users can 
download user and group details|
|7|ranger.plugin.super.users|Superusers|the plugin grants all accesses on all 
resources to listed users|
|8|ranger.plugin.super.groups|Superuser groups|the plugin grants all accesses 
on all resources to users in listed groups|

 


> Service config UI to include additional configurations like 
> service.admin.users, service.admin.groups
> -----------------------------------------------------------------------------------------------------
>
>                 Key: RANGER-3643
>                 URL: https://issues.apache.org/jira/browse/RANGER-3643
>             Project: Ranger
>          Issue Type: Improvement
>          Components: admin, plugins
>    Affects Versions: 3.0.0, 2.3.0
>            Reporter: kirby zhou
>            Priority: Major
>         Attachments: WhatIWant.jpg
>
>
> Ranger admin and plugins recognize following configurations that allow listed 
> users and groups to perform specific operations. Service configuration UI in 
> Ranger admin should be updated to list these configurations, with the ability 
> to pick users and groups (similar to the policy UI).
>  
> || ||Configuration||Label||Description||
> |1|service.admin.users|Service Admin Users|listed users can 
> create/update/delete/read policies in the service|
> |2|service.admin.groups|Service Admin Groups|users in listed grous can 
> create/update/delete/read policies in the service|
> |3|policy.download.auth.users|Policy download users|listed users can download 
> policies in the service|
> |4|tag.download.auth.users|Tag download users|listed users can download tags 
> in the service|
> |5|userstore.download.auth.users|Userstore download users|listed users can 
> download user and group details|
> |6|ranger.plugin.super.users|Superusers|the plugin grants all accesses on all 
> resources to listed users|
> |7|ranger.plugin.super.groups|Superuser groups|the plugin grants all accesses 
> on all resources to users in listed groups|
>  



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to