Raghavender Rao Guruvannagari created AMBARI-22831:
------------------------------------------------------
Summary: Ambari Hive view 2.0 will not show Ranger Authorization
if logged in AD Usernames are Uppercase
Key: AMBARI-22831
URL: https://issues.apache.org/jira/browse/AMBARI-22831
Project: Ambari
Issue Type: Bug
Components: ambari-views
Affects Versions: 2.6.2
Reporter: Raghavender Rao Guruvannagari
In customer environment, all the AD users login with Uppercase and Ranger
authorization is set considering Uppercase usernames.
When AD User(already has Admin privileges) access Ambari hive view 2.0, it
errors out with below exception.
{code:java}
Message: User B0001234 does not have privilege to access the table
authorization information
Error Code: NOT_OPERATOR_OR_ADMIN
{code}
-->Although user B0001234 is admin user.
{code:java}
$ curl -u admin:admin
'http://sec-lab1.raghav.com:8080/api/v1/users/b0001234?privileges/PrivilegeInfo/permission_name=AMBARI.ADMINISTRATOR|(privileges/PrivilegeInfo/permission_name.in(CLUSTER.ADMINISTRATOR,CLUSTER.OPERATOR)&privileges/PrivilegeInfo/cluster_name=seclab)'
{
"href" :
"http://sec-lab1.raghav.com:8080/api/v1/users/b0001234?privileges/PrivilegeInfo/permission_name=AMBARI.ADMINISTRATOR|(privileges/PrivilegeInfo/permission_name.in(CLUSTER.ADMINISTRATOR,CLUSTER.OPERATOR)&privileges/PrivilegeInfo/cluster_name=seclab)",
"Users" : {
"user_name" : "b0001234"
},
"privileges" : [
{
"href" :
"http://sec-lab1.raghav.com:8080/api/v1/users/b0001234/privileges/202";,
"PrivilegeInfo" : {
"permission_name" : "AMBARI.ADMINISTRATOR",
"privilege_id" : 202,
"user_name" : "b0001234"
}
}
]
}
{code}
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
