[
https://issues.apache.org/jira/browse/HBASE-12831?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Sean Busbey updated HBASE-12831:
--------------------------------
Resolution: Fixed
Fix Version/s: 1.1.0
2.0.0
Release Note:
Auditing of visibility label administration.
Administrative actions on visibility labels, such as creation of a label or
changing the set of labels a user or group may access, are now sent to the
audit log. The audit messages should be similar to those already tracked by the
access controller.
Status: Resolved (was: Patch Available)
pushed to 0.98+. thanks [~ashish singhi]!
> Changing the set of vis labels a user has access to doesn't generate an audit
> log event
> ---------------------------------------------------------------------------------------
>
> Key: HBASE-12831
> URL: https://issues.apache.org/jira/browse/HBASE-12831
> Project: HBase
> Issue Type: Bug
> Affects Versions: 1.0.0, 2.0.0, 0.98.6
> Reporter: Sean Busbey
> Assignee: Ashish Singhi
> Labels: audit
> Fix For: 2.0.0, 1.0.1, 1.1.0, 0.98.11
>
> Attachments: HBASE-12831-v2.patch, HBASE-12831-v3.patch,
> HBASE-12831-v5.patch, HBASE-12831-v6.patch, HBASE-12831.patch,
> HBASE-12831v4.patch
>
>
> Right now, the AccessController makes sure that (when users care about audit
> events) we generate an audit log event for any access change, like granting
> or removing a permission from a user.
> When the set of labels a user has access to is altered, it gets handled by
> the VisibilityLabelService and we don't log anything to the audit log.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
