Fang-Yu Rao created RANGER-5594:
-----------------------------------
Summary: Fields in AuthzAuditEvent not corrected populated in
RangerDefaultAuditHandler#getAuthzEvents()
Key: RANGER-5594
URL: https://issues.apache.org/jira/browse/RANGER-5594
Project: Ranger
Issue Type: Bug
Components: audit, Ranger
Reporter: Fang-Yu Rao
We found in
[RangerDefaultAuditHandler#getAuthzEvents()|https://github.com/apache/ranger/blob/3fd46db/agents-common/src/main/java/org/apache/ranger/plugin/audit/RangerDefaultAuditHandler.java#L102-L155]
that some fields do not seem to be correctly populated. We should probably fix
them.
-
[action|https://github.com/apache/ranger/blob/3fd46db/agents-common/src/main/java/org/apache/ranger/plugin/audit/RangerDefaultAuditHandler.java#L124]
is currently set by {{{}ret.setAction(request.getAccessType()){}}}.
-
[accessType|https://github.com/apache/ranger/blob/3fd46db/agents-common/src/main/java/org/apache/ranger/plugin/audit/RangerDefaultAuditHandler.java#L127]
is currently set by {{{}ret.setAccessType(request.getAction()){}}}.
- The field of '{{{}reason{}}}' is not set. Recall that we set up this field
in a {{RangerAccessResult}} in several places for Apache Hive, e.g.,
[https://github.com/apache/ranger/blob/3fd46db/hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuthorizer.java#L2994]
in
[RangerHiveAuthorizer.java#createRangerHiveAccessResult()|https://github.com/apache/ranger/blob/3fd46db/hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuthorizer.java#L2975C32-L2998].
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
