Alok Lal created RANGER-785:
-------------------------------
Summary: Service definitions should support a formal notion of
super user
Key: RANGER-785
URL: https://issues.apache.org/jira/browse/RANGER-785
Project: Ranger
Issue Type: Improvement
Reporter: Alok Lal
Most services that we authorize have some notion of superuser.
# hbase has a property which lists the superuse id. Ranger plugin skips most
authorizations for that superuser.
# In case of kafka unless proper policies exist for the service user cluster
won't come up.
# At other times people have asked that auditing be done differently for the
service user.
One way to remedy these is to add a formal notion of a superuser for a service
and deal with it appropriately during service creation, during authorization in
the plugin, etc.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
