[jira] [Commented] (HBASE-11384) [Visibility Controller]Check for users covering authorizations for every mutation

Fri, 01 Aug 2014 17:22:28 -0700 

    [ 
https://issues.apache.org/jira/browse/HBASE-11384?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14083235#comment-14083235
 ] 

Hudson commented on HBASE-11384:
--------------------------------

FAILURE: Integrated in HBase-TRUNK #5363 (See 
[https://builds.apache.org/job/HBase-TRUNK/5363/])
HBASE-11384 - [Visibility Controller]Check for users covering (ramkrishna: rev 
4fd3b110f3d35dfd093d3d02ae77699b7c0447f4)
* 
hbase-server/src/main/java/org/apache/hadoop/hbase/security/visibility/VisibilityLabelsManager.java
* 
hbase-client/src/main/java/org/apache/hadoop/hbase/security/visibility/VisibilityConstants.java
* hbase-common/src/main/resources/hbase-default.xml
* 
hbase-server/src/main/java/org/apache/hadoop/hbase/security/visibility/VisibilityController.java
HBASE-11384 - [Visibility Controller]Check for users covering (ramkrishna: rev 
04e06645acb14335ac9ae03aabebc286565c6f52)
* 
hbase-server/src/test/java/org/apache/hadoop/hbase/security/visibility/TestVisibilityWithCheckAuths.java


> [Visibility Controller]Check for users covering authorizations for every 
> mutation
> ---------------------------------------------------------------------------------
>
>                 Key: HBASE-11384
>                 URL: https://issues.apache.org/jira/browse/HBASE-11384
>             Project: HBase
>          Issue Type: Sub-task
>    Affects Versions: 0.98.3
>            Reporter: ramkrishna.s.vasudevan
>            Assignee: ramkrishna.s.vasudevan
>             Fix For: 0.99.0, 1.0.0, 0.98.5
>
>         Attachments: HBASE-11384.patch, HBASE-11384_1.patch, 
> HBASE-11384_2.patch, HBASE-11384_3.patch, HBASE-11384_4.patch, 
> HBASE-11384_6.patch, HBASE-11384_7.patch, HBASE-11384_8-0.98.patch, 
> HBASE-11384_8.patch
>
>
> As part of discussions, it is better that every mutation either Put/Delete 
> with Visibility expressions should validate if the expression has labels for 
> which the user has authorization.  If not fail the mutation.
> Suppose User A is assoicated with A,B and C.  The put has a visibility 
> expression A&D. Then fail the mutation as D is not associated with User A.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Reply via email to