[
https://issues.apache.org/jira/browse/HDDS-7697?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17696381#comment-17696381
]
Neil Joshi commented on HDDS-7697:
----------------------------------
Thanks [~sumitagrawl] for the doc and update. For the bucket permission
handling for setting/clearing quotas with Ranger, we would like this to be
fixed from WRITE to CREATE acl permission. With Ranger then, only those that
have CREATE permission for the bucket (bucket owner and admin) can set and
clear quotas.
Request to change bucket Ranger permission for quota from WRITE to CREATE ACL.
> Quotas should only be able to be set and cleared by Admin
> ----------------------------------------------------------
>
> Key: HDDS-7697
> URL: https://issues.apache.org/jira/browse/HDDS-7697
> Project: Apache Ozone
> Issue Type: Sub-task
> Reporter: Neil Joshi
> Assignee: Sumit Agrawal
> Priority: Major
> Attachments: ACL comparision for Ranger and Native ACL.docx
>
>
> With access control enabled, native & ranger authorizer, any user that has
> access to volume or bucket can set and clear quotas. It is expected that
> only admins can set and clear quotas.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
