Re: Review Request 35670: RANGER-561: YARN plugin updated to fallback to YARN ACL, instead of creating Ranger policies

Madhan Neethiraj Sun, 28 Jun 2015 13:22:12 -0700

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/35670/
-----------------------------------------------------------


(Updated June 25, 2015, 12:06 a.m.)


Review request for ranger, Alok Lal, Don Bosco Durai, Gautam Borad, Ramesh 
Mani, Selvamohan Neethiraj, and Velmurugan Periasamy.


Changes
-------

Updated yarnAcl to replace entity permissions given in setPermissions() API, 
instead of appending to existing permissions for the entity - per discussion 
with YARN team


Bugs: RANGER-561
    https://issues.apache.org/jira/browse/RANGER-561


Repository: ranger


Description
-------

YARN plugin updated to fallback to YARN ACL, instead of creating Ranger policies


Diffs (updated)
-----

  
agents-common/src/main/java/org/apache/ranger/authorization/hadoop/constants/RangerHadoopConstants.java
 a800027 
  
plugin-yarn/src/main/java/org/apache/ranger/authorization/yarn/authorizer/RangerYarnAuthorizer.java
 e322477 

Diff: https://reviews.apache.org/r/35670/diff/


Testing
-------

Verified that YARN ACL are evaluated when Ranger policies can't determine the 
access; also the acl-enforce is appropriately set to either ranger-acl or 
yarn-acl


Thanks,

Madhan Neethiraj

Re: Review Request 35670: RANGER-561: YARN plugin updated to fallback to YARN ACL, instead of creating Ranger policies

Reply via email to