Re: Review Request 48064: Handle upgrade scenario in Kerberized Cluster

Tue, 31 May 2016 22:02:33 -0700 

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/48064/#review135764
-----------------------------------------------------------


Fix it, then Ship it!





security-admin/src/main/java/org/apache/ranger/biz/ServiceDBStore.java (line 
3656)
<https://reviews.apache.org/r/48064/#comment200813>

    updateService() should be called only if service-config was updated in this 
method - in line #3648 or #3651 or #3654. Please review and update.


- Madhan Neethiraj


On June 1, 2016, 4:57 a.m., Ankita Sinha wrote:
> 
> -----------------------------------------------------------
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/48064/
> -----------------------------------------------------------
> 
> (Updated June 1, 2016, 4:57 a.m.)
> 
> 
> Review request for ranger, Don Bosco Durai, Gautam Borad, Abhay Kulkarni, 
> Madhan Neethiraj, Pradeep Agrawal, Ramesh Mani, Selvamohan Neethiraj, and 
> Velmurugan Periasamy.
> 
> 
> Bugs: RANGER-1003
>     https://issues.apache.org/jira/browse/RANGER-1003
> 
> 
> Repository: ranger
> 
> 
> Description
> -------
> 
> **Problem Statement**
> In secure environment after upgrade the service and policies is not updated 
> with custom properties for Policy/Tag download and with lookup user to have 
> permission for Test Connection and Resource Lookup.
> 
> **Need to implement following**
> 1. After upgrade add lookup user to have permissions in all policies.
> 2. After upgrade add custom property "policy.download.auth.users" and 
> "tag.download.auth.users" in Service config of each repo and 
> "policy.grantrevoke.auth.users" for HBase/Hive.
> 
> 
> Diffs
> -----
> 
>   security-admin/src/main/java/org/apache/ranger/biz/RangerBizUtil.java 
> 63c630e 
>   security-admin/src/main/java/org/apache/ranger/biz/ServiceDBStore.java 
> d2178f4 
>   security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java 
> 1028c8d 
>   security-admin/src/main/java/org/apache/ranger/rest/TagREST.java be70cfe 
> 
> Diff: https://reviews.apache.org/r/48064/diff/
> 
> 
> Testing
> -------
> 
> 1. Tested Ranger Admin with admin and keyadmin role user.
> 2. Checked when Ranger Admin starts the service/policy created in previous 
> version is updated in secure cluster.
> 
> 
> Thanks,
> 
> Ankita Sinha
> 
>

Reply via email to