Review Request 49367: Grant and Revoke are working even if user is not added to auth properties in repo

Ankita Sinha Wed, 29 Jun 2016 04:45:49 -0700

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/49367/
-----------------------------------------------------------


Review request for ranger, Don Bosco Durai, Gautam Borad, Abhay Kulkarni, 
Madhan Neethiraj, Mehul Parikh, Pradeep Agrawal, Ramesh Mani, Selvamohan 
Neethiraj, Sailaja Polavarapu, and Velmurugan Periasamy.


Bugs: RANGER-1074
    https://issues.apache.org/jira/browse/RANGER-1074


Repository: ranger


Description
-------

** Problem Statement **
Grant and Revoke are working even if user is not added to auth properties in 
repo

** Actual Requirement **
User should be able to do Grant/Revoke if the user is of Admin Role or 
Delegated Admin or is in "policy.grantrevoke.auth.users" list


Diffs
-----

  security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java 77030fb 
  
security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerSSOAuthenticationFilter.java
 b6d3286 

Diff: https://reviews.apache.org/r/49367/diff/


Testing
-------

Tested for Grant/Revoke (Hive and Hbase) with all required combination


Thanks,

Ankita Sinha

Review Request 49367: Grant and Revoke are working even if user is not added to auth properties in repo

Reply via email to