Hao Hao has posted comments on this change. ( http://gerrit.cloudera.org:8080/15436 )
Change subject: [ranger] fix incorrect authz enforcement in Ranger authz provider ...................................................................... Patch Set 6: (1 comment) http://gerrit.cloudera.org:8080/#/c/15436/1/src/kudu/ranger/ranger_client.h File src/kudu/ranger/ranger_client.h: http://gerrit.cloudera.org:8080/#/c/15436/1/src/kudu/ranger/ranger_client.h@57 PS1, Line 57: DATABASE, > I agree with having consistent behavior w.r.t. policy evaluation. Probably Sure, I will reach out to Impala team, but not sure what I can get as the person who developed the Ranger/Impala integration is no longer active. OTOH, I don't think it is necessary to mimic the Sentry policy evaluation (the hierarchical implication) with Ranger, and it probably will be error prone if we do so as we are using Ranger provided plugin vs with Sentry we were developing the Sentry c++ client. So do you want me to hold off the change for allowing Metadata on db for list tables? -- To view, visit http://gerrit.cloudera.org:8080/15436 To unsubscribe, visit http://gerrit.cloudera.org:8080/settings Gerrit-Project: kudu Gerrit-Branch: master Gerrit-MessageType: comment Gerrit-Change-Id: I267aabc5f224ee7ceeffd6187785595dd6f16487 Gerrit-Change-Number: 15436 Gerrit-PatchSet: 6 Gerrit-Owner: Hao Hao <[email protected]> Gerrit-Reviewer: Adar Dembo <[email protected]> Gerrit-Reviewer: Andrew Wong <[email protected]> Gerrit-Reviewer: Attila Bukor <[email protected]> Gerrit-Reviewer: Hao Hao <[email protected]> Gerrit-Reviewer: Kudu Jenkins (120) Gerrit-Comment-Date: Thu, 19 Mar 2020 23:06:57 +0000 Gerrit-HasComments: Yes
