mneethiraj commented on issue #274: URL: https://github.com/apache/polaris/issues/274#issuecomment-3377347809
I am looking for clarifications on following to get started. Can someone from Polaris community help please? 1. Is there a Polaris configuration to specify an authorizer implementation? It looks like currently Polaris is hardcoded to use the default implementation, class `PolarisAuthorizerImpl` (in [`ServiceProducers.polarisAuthorizer()`](https://github.com/apache/polaris/blob/main/runtime/service/src/main/java/org/apache/polaris/service/config/ServiceProducers.java#L142)). 2. Is `PolarisAuthorizer` a singleton instance or an instance is created for each request - given `ServiceProducers.polarisAuthorizer()` is marked with `@RequestScoped`? 3. Does Polaris provide a mechanism for authorizer implementations to read configurations, like URL to Ranger server? 4. Is there any documentation on `PolarisAuthorizer`? Especially the parameter [`activatedEntities`](https://github.com/apache/polaris/blob/main/polaris-core/src/main/java/org/apache/polaris/core/auth/PolarisAuthorizer.java#L33) to `authorizeOrThrow()` methods? 5. External authorizer implementations, like Apache Ranger, are likely to manage grants on their own instead of using `PolarisGrantRecord` entries managed in Polaris. Authorization interface should provide methods for implementations to override `grant` and `revoke` commands. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
