[jira] [Created] (RANGER-2886) Exporting tag policies fails when 'polResource' query parameter is used
Ramesh Mani created RANGER-2886: --- Summary: Exporting tag policies fails when 'polResource' query parameter is used Key: RANGER-2886 URL: https://issues.apache.org/jira/browse/RANGER-2886 Project: Ranger Issue Type: Bug Components: Ranger Affects Versions: 2.1.0 Reporter: Ramesh Mani Assignee: Ramesh Mani Exporting tag policies fails when 'polResource' query parameter is used -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (RANGER-2886) Exporting tag policies fails when 'polResource' query parameter is used
[ https://issues.apache.org/jira/browse/RANGER-2886?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17148288#comment-17148288 ] Ramesh Mani commented on RANGER-2886: - [~dineshkumar-yadav] i am working on a patch on this issue. I shall let you know once its ready. > Exporting tag policies fails when 'polResource' query parameter is used > --- > > Key: RANGER-2886 > URL: https://issues.apache.org/jira/browse/RANGER-2886 > Project: Ranger > Issue Type: Bug > Components: Ranger >Affects Versions: 2.1.0 >Reporter: Ramesh Mani >Assignee: Dineshkumar Yadav >Priority: Major > > Exporting tag policies fails when 'polResource' query parameter is used -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Assigned] (RANGER-2886) Exporting tag policies fails when 'polResource' query parameter is used
[ https://issues.apache.org/jira/browse/RANGER-2886?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Ramesh Mani reassigned RANGER-2886: --- Assignee: Dineshkumar Yadav (was: Ramesh Mani) > Exporting tag policies fails when 'polResource' query parameter is used > --- > > Key: RANGER-2886 > URL: https://issues.apache.org/jira/browse/RANGER-2886 > Project: Ranger > Issue Type: Bug > Components: Ranger >Affects Versions: 2.1.0 >Reporter: Ramesh Mani >Assignee: Dineshkumar Yadav >Priority: Major > > Exporting tag policies fails when 'polResource' query parameter is used -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (RANGER-2880) Add matched policy id to the access denied error message.
star created RANGER-2880: Summary: Add matched policy id to the access denied error message. Key: RANGER-2880 URL: https://issues.apache.org/jira/browse/RANGER-2880 Project: Ranger Issue Type: Bug Components: plugins Reporter: star Assignee: star Accesses are often denied by deny items in some policy, but user is not aware of that. It is hard to inspect such policy in ranger admin. If the denying policy id is provided in error message, it will make a big difference. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Assigned] (RANGER-2882) Make a abstraction for RangerBasePlugin#isAccessAllowed to allow extension of remote policy evaluation
[
https://issues.apache.org/jira/browse/RANGER-2882?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
star reassigned RANGER-2882:
Assignee: star
> Make a abstraction for RangerBasePlugin#isAccessAllowed to allow extension of
> remote policy evaluation
> --
>
> Key: RANGER-2882
> URL: https://issues.apache.org/jira/browse/RANGER-2882
> Project: Ranger
> Issue Type: Bug
> Components: plugins
>Reporter: star
>Assignee: star
>Priority: Major
>
> {code:java}
> public interface RangerAuthClient {
> RangerAccessResult evaluatePolicies(RangerAccessRequest request, int
> policyType, RangerAccessResultProcessor resultProcessor);
> }
> //default auth client, local mode
> public class RangerLocalAuthClient implements RangerAuthClient;
> //auth client by http protocol
> public class RangerHttpAuthClient implements RangerAuthClient;{code}
> As it consumes large memory with millions policies, we'd like to evaluate
> policies through http or tcp protocol in hive.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
[jira] [Updated] (RANGER-2878) Add read write lock to RangerResourceTrie
[ https://issues.apache.org/jira/browse/RANGER-2878?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] star updated RANGER-2878: - Description: Current incremental policy update mechanism may cause issues in two cases. 1. When policy is updated, it is consist of two operations: delete then add. Policy is temporarily unavailable after delete operation and before add operation. It may cause task failure. 2. RangerResourceTrie is also updated when matching policies (ref RANGER-2760 and RANGER-2761). Without read write lock, it will lead to chaos and inaccurate result. was: Current incremental policy update mechanism may cause issues in two cases. 1. When policy is updated, it is consist of two operations: delete then add. Policy is temporarily unavailable after delete and before add operation. It may cause task failure. 2. RangerResourceTrie is also updated when matching policies (ref RANGER-2760 and RANGER-2761). Without read write lock, it will lead to chaos and inaccurate result. > Add read write lock to RangerResourceTrie > - > > Key: RANGER-2878 > URL: https://issues.apache.org/jira/browse/RANGER-2878 > Project: Ranger > Issue Type: Bug > Components: plugins >Affects Versions: 2.0.0 >Reporter: star >Assignee: star >Priority: Major > > Current incremental policy update mechanism may cause issues in two cases. > 1. When policy is updated, it is consist of two operations: delete then > add. Policy is temporarily unavailable after delete operation and before add > operation. It may cause task failure. > 2. RangerResourceTrie is also updated when matching policies (ref > RANGER-2760 and RANGER-2761). Without read write lock, it will lead to chaos > and inaccurate result. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (RANGER-2878) Add read write lock to RangerResourceTrie
star created RANGER-2878: Summary: Add read write lock to RangerResourceTrie Key: RANGER-2878 URL: https://issues.apache.org/jira/browse/RANGER-2878 Project: Ranger Issue Type: Bug Components: plugins Affects Versions: 2.0.0 Reporter: star Assignee: star Current incremental policy update mechanism may cause issues in two cases. 1. When policy is updated, it is consist of two operations: delete then add. Policy is temporarily unavailable after delete and before add operation. It may cause task failure. 2. RangerResourceTrie is also updated when matching policies (ref RANGER-2760 and RANGER-2761). Without read write lock, it will lead to chaos and inaccurate result. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (RANGER-2881) Delegate Admin user having role "user" able to create policy which has non-existing users/groups
Dineshkumar Yadav created RANGER-2881: - Summary: Delegate Admin user having role "user" able to create policy which has non-existing users/groups Key: RANGER-2881 URL: https://issues.apache.org/jira/browse/RANGER-2881 Project: Ranger Issue Type: Bug Components: Ranger Reporter: Dineshkumar Yadav -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (RANGER-2881) Delegate Admin user having role "user" able to create policy which has non-existing users/groups
[ https://issues.apache.org/jira/browse/RANGER-2881?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Dineshkumar Yadav updated RANGER-2881: -- Description: Ranger user having role as "user" with deligate > Delegate Admin user having role "user" able to create policy which has > non-existing users/groups > > > Key: RANGER-2881 > URL: https://issues.apache.org/jira/browse/RANGER-2881 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Dineshkumar Yadav >Priority: Major > > Ranger user having role as "user" with deligate -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (RANGER-2879) Improve performance of incrementally updating policies
[
https://issues.apache.org/jira/browse/RANGER-2879?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
star updated RANGER-2879:
-
Issue Type: Improvement (was: Bug)
> Improve performance of incrementally updating policies
> --
>
> Key: RANGER-2879
> URL: https://issues.apache.org/jira/browse/RANGER-2879
> Project: Ranger
> Issue Type: Improvement
> Components: plugins
>Affects Versions: 2.0.0
>Reporter: star
>Assignee: star
>Priority: Major
>
> There is large amount of deleting policy operation in incrementally updating
> mechanism. But policies in RangerPolicyRepository is a List.
> {code:java}
> //
> private void removePolicy(Long id) {
> if (LOG.isDebugEnabled()) {
> LOG.debug("==> RangerPolicyRepository.removePolicy(" + id +")");
> }
> Iterator iterator = policies.iterator();
> while (iterator.hasNext()) {
> if (id.equals(iterator.next().getId())) {
> iterator.remove();
> break;
> }
> }
> policyEvaluatorsMap.remove(id);
> if (LOG.isDebugEnabled()) {
> LOG.debug("<== RangerPolicyRepository.removePolicy(" + id +")");
> }
> }
> {code}
> Replace list with a map structure will improve performance of removePolicy a
> lot.
>
>
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
[jira] [Updated] (RANGER-2880) Add matched policy id to the access denied error message.
[ https://issues.apache.org/jira/browse/RANGER-2880?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] star updated RANGER-2880: - Issue Type: Improvement (was: Bug) > Add matched policy id to the access denied error message. > - > > Key: RANGER-2880 > URL: https://issues.apache.org/jira/browse/RANGER-2880 > Project: Ranger > Issue Type: Improvement > Components: plugins >Reporter: star >Assignee: star >Priority: Major > > Accesses are often denied by deny items in some policy, but user is not aware > of that. It is hard to inspect such policy in ranger admin. If the denying > policy id is provided in error message, it will make a big difference. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (RANGER-2882) Make a abstraction for RangerBasePlugin#isAccessAllowed to allow extension of remote policy evaluation
[
https://issues.apache.org/jira/browse/RANGER-2882?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
star updated RANGER-2882:
-
Issue Type: New Feature (was: Bug)
> Make a abstraction for RangerBasePlugin#isAccessAllowed to allow extension of
> remote policy evaluation
> --
>
> Key: RANGER-2882
> URL: https://issues.apache.org/jira/browse/RANGER-2882
> Project: Ranger
> Issue Type: New Feature
> Components: plugins
>Reporter: star
>Assignee: star
>Priority: Major
>
> {code:java}
> public interface RangerAuthClient {
> RangerAccessResult evaluatePolicies(RangerAccessRequest request, int
> policyType, RangerAccessResultProcessor resultProcessor);
> }
> //default auth client, local mode
> public class RangerLocalAuthClient implements RangerAuthClient;
> //auth client by http protocol
> public class RangerHttpAuthClient implements RangerAuthClient;{code}
> As it consumes large memory with millions policies, we'd like to evaluate
> policies through http or tcp protocol in hive.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
[jira] [Updated] (RANGER-2881) Delegate Admin user having role "user" able to create policy which has non-existing users/groups
[ https://issues.apache.org/jira/browse/RANGER-2881?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Dineshkumar Yadav updated RANGER-2881: -- Description: Ranger user having role as "user" with delegate admin permission able to create policy which has non-existing users/groups/roles in the specified policy. only admin users should be able to create policy with new users/groups/roles on the fly creation of users/groups/roles. was:Ranger user having role as "user" with deligate > Delegate Admin user having role "user" able to create policy which has > non-existing users/groups > > > Key: RANGER-2881 > URL: https://issues.apache.org/jira/browse/RANGER-2881 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Dineshkumar Yadav >Priority: Major > > Ranger user having role as "user" with delegate admin permission able to > create policy which has non-existing users/groups/roles in the specified > policy. > only admin users should be able to create policy with new users/groups/roles > on the fly creation of users/groups/roles. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (RANGER-2883) Update RangerServicePoliciesCache incrementally when delete/update/add instead of reloading from the db store
star created RANGER-2883: Summary: Update RangerServicePoliciesCache incrementally when delete/update/add instead of reloading from the db store Key: RANGER-2883 URL: https://issues.apache.org/jira/browse/RANGER-2883 Project: Ranger Issue Type: Improvement Components: Ranger Affects Versions: 1.2.0, 2.0.0 Reporter: star Assignee: star To ensure strong consistency of RangerServicePoliciesCache with db store, all policies will be reload after even a single delete/update/add operation. While reloading all policies from db store is very time consuming. So it's impossible to add a million policies through http interface. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Comment Edited] (RANGER-2810) Kafka with Ranger plugin will fail
[ https://issues.apache.org/jira/browse/RANGER-2810?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17147519#comment-17147519 ] rujia edited comment on RANGER-2810 at 6/29/20, 7:03 AM: - this problem is caused by kafka run without core-site.xml, and then kafka-plugin add OS user to principal list of subject. When the server principal expired, it will be removed from principal list and re-append(relogin), so the OS user will be the first one, and then will cause GSSAPI error when do connection was (Author: rujia1019): this problem is caused by kafka run without core-site.xml, and then kafka-plugin add OS user to principal list of subject, when the server principal expired, the server pricipal will be remove from principal list and re-append(relogin), so the OS user will be the fiest one, and then will cause GSSAPI error then do connection > Kafka with Ranger plugin will fail > -- > > Key: RANGER-2810 > URL: https://issues.apache.org/jira/browse/RANGER-2810 > Project: Ranger > Issue Type: Bug > Components: Ranger >Affects Versions: master, 2.0.0, 2.1.0 > Environment: CentOS Linux release 7.6.1810 (Core) > Ranger 2.0.0 >Reporter: bright.zhou >Assignee: Pradeep Agrawal >Priority: Blocker > Attachments: image-2020-06-15-14-46-53-528.png > > > We use Ranger plugin to admin acls of Kafka cluster. At first , everything is > ok, but after 10h+ of kafka start, there is something wrong occured, we can > see error log in kafka-root.log, the error log is `Authentication failed > during authentication due to xxx with SASL mechanism GSSAPI: GSS context targ > name protocol error: x `。To solve this we had to restart Kafka, It's so > strange that if i change `authorizer.class.name` to > `kafka.security.auth.SimpleAclAuthorizer` it will be ok . In theory, ranger > is related with acls and not related with SASL authentication,so i want to > ask for help. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (RANGER-2879) Improve performance of incrementally updating policies
star created RANGER-2879:
Summary: Improve performance of incrementally updating policies
Key: RANGER-2879
URL: https://issues.apache.org/jira/browse/RANGER-2879
Project: Ranger
Issue Type: Bug
Components: plugins
Affects Versions: 2.0.0
Reporter: star
Assignee: star
There is large amount of deleting policy operation in incrementally updating
mechanism. But policies in RangerPolicyRepository is a List.
{code:java}
//
private void removePolicy(Long id) {
if (LOG.isDebugEnabled()) {
LOG.debug("==> RangerPolicyRepository.removePolicy(" + id +")");
}
Iterator iterator = policies.iterator();
while (iterator.hasNext()) {
if (id.equals(iterator.next().getId())) {
iterator.remove();
break;
}
}
policyEvaluatorsMap.remove(id);
if (LOG.isDebugEnabled()) {
LOG.debug("<== RangerPolicyRepository.removePolicy(" + id +")");
}
}
{code}
Replace list with a map structure will improve performance of removePolicy a
lot.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
[jira] [Created] (RANGER-2882) Make a abstraction for RangerBasePlugin#isAccessAllowed to allow extension of remote policy evaluation
star created RANGER-2882:
Summary: Make a abstraction for RangerBasePlugin#isAccessAllowed
to allow extension of remote policy evaluation
Key: RANGER-2882
URL: https://issues.apache.org/jira/browse/RANGER-2882
Project: Ranger
Issue Type: Bug
Components: plugins
Reporter: star
{code:java}
public interface RangerAuthClient {
RangerAccessResult evaluatePolicies(RangerAccessRequest request, int
policyType, RangerAccessResultProcessor resultProcessor);
}
//default auth client, local mode
public class RangerLocalAuthClient implements RangerAuthClient;
//auth client by http protocol
public class RangerHttpAuthClient implements RangerAuthClient;{code}
As it consumes large memory with millions policies, we'd like to evaluate
policies through http or tcp protocol in hive.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
[jira] [Assigned] (RANGER-2881) Delegate Admin user having role "user" able to create policy which has non-existing users/groups
[ https://issues.apache.org/jira/browse/RANGER-2881?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Dineshkumar Yadav reassigned RANGER-2881: - Assignee: Dineshkumar Yadav > Delegate Admin user having role "user" able to create policy which has > non-existing users/groups > > > Key: RANGER-2881 > URL: https://issues.apache.org/jira/browse/RANGER-2881 > Project: Ranger > Issue Type: Bug > Components: Ranger >Reporter: Dineshkumar Yadav >Assignee: Dineshkumar Yadav >Priority: Major > > Ranger user having role as "user" with delegate admin permission able to > create policy which has non-existing users/groups/roles in the specified > policy. > only admin users should be able to create policy with new users/groups/roles > on the fly creation of users/groups/roles. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Updated] (RANGER-2883) Update RangerServicePoliciesCache incrementally when delete/update/add instead of reloading all policies from the db store
[ https://issues.apache.org/jira/browse/RANGER-2883?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] star updated RANGER-2883: - Summary: Update RangerServicePoliciesCache incrementally when delete/update/add instead of reloading all policies from the db store (was: Update RangerServicePoliciesCache incrementally when delete/update/add instead of reloading from the db store) > Update RangerServicePoliciesCache incrementally when delete/update/add > instead of reloading all policies from the db store > -- > > Key: RANGER-2883 > URL: https://issues.apache.org/jira/browse/RANGER-2883 > Project: Ranger > Issue Type: Improvement > Components: Ranger >Affects Versions: 2.0.0, 1.2.0 >Reporter: star >Assignee: star >Priority: Major > > To ensure strong consistency of RangerServicePoliciesCache with db store, all > policies will be reload after even a single delete/update/add operation. > While reloading all policies from db store is very time consuming. So it's > impossible to add a million policies through http interface. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Comment Edited] (RANGER-2810) Kafka with Ranger plugin will fail
[ https://issues.apache.org/jira/browse/RANGER-2810?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17147519#comment-17147519 ] rujia edited comment on RANGER-2810 at 6/29/20, 7:02 AM: - this problem is caused by kafka run without core-site.xml, and then kafka-plugin add OS user to principal list of subject, when the server principal expired, the server pricipal will be remove from principal list and re-append(relogin), so the OS user will be the fiest one, and then will cause GSSAPI error then do connection was (Author: rujia1019): this problem is caused by kafka run witout core-site.xml, and then kakfa-plugin add OS user to principal list of subject, when the server principal expired, the server pricipal will be remove from principal list and re-append(relogin), so the OS user will be the fiest one, and then will cause GSSAPI error then do connection > Kafka with Ranger plugin will fail > -- > > Key: RANGER-2810 > URL: https://issues.apache.org/jira/browse/RANGER-2810 > Project: Ranger > Issue Type: Bug > Components: Ranger >Affects Versions: master, 2.0.0, 2.1.0 > Environment: CentOS Linux release 7.6.1810 (Core) > Ranger 2.0.0 >Reporter: bright.zhou >Assignee: Pradeep Agrawal >Priority: Blocker > Attachments: image-2020-06-15-14-46-53-528.png > > > We use Ranger plugin to admin acls of Kafka cluster. At first , everything is > ok, but after 10h+ of kafka start, there is something wrong occured, we can > see error log in kafka-root.log, the error log is `Authentication failed > during authentication due to xxx with SASL mechanism GSSAPI: GSS context targ > name protocol error: x `。To solve this we had to restart Kafka, It's so > strange that if i change `authorizer.class.name` to > `kafka.security.auth.SimpleAclAuthorizer` it will be ok . In theory, ranger > is related with acls and not related with SASL authentication,so i want to > ask for help. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Created] (RANGER-2884) Search policies from db store instead of filtering by RangerServicePoliciesCache in ranger admin
star created RANGER-2884: Summary: Search policies from db store instead of filtering by RangerServicePoliciesCache in ranger admin Key: RANGER-2884 URL: https://issues.apache.org/jira/browse/RANGER-2884 Project: Ranger Issue Type: Improvement Components: Ranger Affects Versions: 1.2.0, 2.0.0 Reporter: star Assignee: star Now, ranger admin searches policies by user name or group name simply by traverse all policies in RangerServicePoliciesCache. However It take more than 10 seconds to search policies when there are millions of policies, which is not acceptable. -- This message was sent by Atlassian Jira (v8.3.4#803005)
Re: Review Request 72613: RANGER-2863 : Ranger UI Improvement.
--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/72613/ --- (Updated June 29, 2020, 12:52 p.m.) Review request for ranger, Ankita Sinha, Dhaval Shah, Dineshkumar Yadav, Gautam Borad, Jayendra Parab, Kishor Gollapalliwar, Madhan Neethiraj, Mehul Parikh, Mugdha Varadkar, Pradeep Agrawal, and Velmurugan Periasamy. Bugs: RANGER-2863 https://issues.apache.org/jira/browse/RANGER-2863 Repository: ranger Description --- UI Improvement 1 . Added sidebar for all page. This will make navigation between various repositories a lot easier. Diffs (updated) - security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.eot PRE-CREATION security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.svg PRE-CREATION security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.ttf PRE-CREATION security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.woff PRE-CREATION security-admin/src/main/webapp/index.html 392f0ab security-admin/src/main/webapp/scripts/App.js 937ee27 security-admin/src/main/webapp/scripts/Main.js 772de5b security-admin/src/main/webapp/scripts/controllers/Controller.js 1c3ec62 security-admin/src/main/webapp/scripts/controllers/NController.js PRE-CREATION security-admin/src/main/webapp/scripts/views/common/ProfileBar.js eda security-admin/src/main/webapp/scripts/views/common/TopNav.js 9d4f0a3 security-admin/src/main/webapp/scripts/views/kms/KMSTableLayout.js ccc7b45 security-admin/src/main/webapp/scripts/views/permissions/ModulePermsTableLayout.js 9e2260a security-admin/src/main/webapp/scripts/views/policies/NRangerPolicyTableLayout.js PRE-CREATION security-admin/src/main/webapp/scripts/views/policies/RangerPolicyTableLayout.js 5162dec security-admin/src/main/webapp/scripts/views/policymanager/NServiceLayout.js PRE-CREATION security-admin/src/main/webapp/scripts/views/policymanager/ServiceLayout.js de81182 security-admin/src/main/webapp/scripts/views/policymanager/ServiceLayoutSidebar.js PRE-CREATION security-admin/src/main/webapp/scripts/views/reports/AuditLayout.js e4c4a3b security-admin/src/main/webapp/scripts/views/reports/UserAccessLayout.js ecda127 security-admin/src/main/webapp/scripts/views/security_zone/SecurityZone.js 982387d security-admin/src/main/webapp/scripts/views/security_zone/ZoneCreate.js 117e388 security-admin/src/main/webapp/scripts/views/service/ServiceCreate.js 2f063fa security-admin/src/main/webapp/scripts/views/user/UserProfile.js 7ccd5f8 security-admin/src/main/webapp/scripts/views/users/UserTableLayout.js 41ca572 security-admin/src/main/webapp/styles/xa.css 00a2c67 security-admin/src/main/webapp/templates/common/ProfileBar_tmpl.html 1c3cfe0 security-admin/src/main/webapp/templates/common/ServiceManagerLayout_tmpl.html ded4c34 security-admin/src/main/webapp/templates/common/ServiceManagerSidebarLayout_tmpl.html PRE-CREATION security-admin/src/main/webapp/templates/common/TopNav_tmpl.html cfb5eac security-admin/src/main/webapp/templates/helpers/XAHelpers.js d190a87 security-admin/src/main/webapp/templates/kms/KmsTableLayout_tmpl.html 2f42791 security-admin/src/main/webapp/templates/permissions/ModulePermsTableLayout_tmpl.html 4b35587 security-admin/src/main/webapp/templates/policies/RangerPolicyTableLayout_tmpl.html 9dd14c7 security-admin/src/main/webapp/templates/reports/AuditLayout_tmpl.html 0f62776 security-admin/src/main/webapp/templates/reports/UserAccessLayout_tmpl.html 887d1bf security-admin/src/main/webapp/templates/security_zone/SecurityZone_tmpl.html 6a94d32 security-admin/src/main/webapp/templates/security_zone/ZoneResourceItem_tmpl.html a4dbf6f security-admin/src/main/webapp/templates/user/UserProfile_tmpl.html 9c4aced security-admin/src/main/webapp/templates/users/UserTableLayout_tmpl.html 5e6f567 Diff: https://reviews.apache.org/r/72613/diff/3/ Changes: https://reviews.apache.org/r/72613/diff/2-3/ Testing --- Testing is in progress. Thanks, Nitin Galave
Announcing ApacheCon @Home 2020
Hi, Apache enthusiast! (You’re receiving this because you’re subscribed to one or more dev or user mailing lists for an Apache Software Foundation project.) The ApacheCon Planners and the Apache Software Foundation are pleased to announce that ApacheCon @Home will be held online, September 29th through October 1st, 2020. We’ll be featuring content from dozens of our projects, as well as content about community, how Apache works, business models around Apache software, the legal aspects of open source, and many other topics. Full details about the event, and registration, is available at https://apachecon.com/acah2020 Due to the confusion around how and where this event was going to be held, and in order to open up to presenters from around the world who may previously have been unable or unwilling to travel, we’ve reopened the Call For Presentations until July 13th. Submit your talks today at https://acna2020.jamhosted.net/ We hope to see you at the event! Rich Bowen, VP Conferences, The Apache Software Foundation
Re: Review Request 72613: RANGER-2863 : Ranger UI Improvement.
--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/72613/#review221090 --- Ship it! Ship It! - Mehul Parikh On June 29, 2020, 12:52 p.m., Nitin Galave wrote: > > --- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/72613/ > --- > > (Updated June 29, 2020, 12:52 p.m.) > > > Review request for ranger, Ankita Sinha, Dhaval Shah, Dineshkumar Yadav, > Gautam Borad, Jayendra Parab, Kishor Gollapalliwar, Madhan Neethiraj, Mehul > Parikh, Mugdha Varadkar, Pradeep Agrawal, and Velmurugan Periasamy. > > > Bugs: RANGER-2863 > https://issues.apache.org/jira/browse/RANGER-2863 > > > Repository: ranger > > > Description > --- > > UI Improvement > 1 . Added sidebar for all page. This will make navigation between various > repositories a lot easier. > > > Diffs > - > > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.eot > PRE-CREATION > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.svg > PRE-CREATION > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.ttf > PRE-CREATION > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.woff > PRE-CREATION > security-admin/src/main/webapp/index.html 392f0ab > security-admin/src/main/webapp/scripts/App.js 937ee27 > security-admin/src/main/webapp/scripts/Main.js 772de5b > security-admin/src/main/webapp/scripts/controllers/Controller.js 1c3ec62 > security-admin/src/main/webapp/scripts/controllers/NController.js > PRE-CREATION > security-admin/src/main/webapp/scripts/views/common/ProfileBar.js eda > security-admin/src/main/webapp/scripts/views/common/TopNav.js 9d4f0a3 > security-admin/src/main/webapp/scripts/views/kms/KMSTableLayout.js ccc7b45 > > security-admin/src/main/webapp/scripts/views/permissions/ModulePermsTableLayout.js > 9e2260a > > security-admin/src/main/webapp/scripts/views/policies/NRangerPolicyTableLayout.js > PRE-CREATION > > security-admin/src/main/webapp/scripts/views/policies/RangerPolicyTableLayout.js > 5162dec > > security-admin/src/main/webapp/scripts/views/policymanager/NServiceLayout.js > PRE-CREATION > security-admin/src/main/webapp/scripts/views/policymanager/ServiceLayout.js > de81182 > > security-admin/src/main/webapp/scripts/views/policymanager/ServiceLayoutSidebar.js > PRE-CREATION > security-admin/src/main/webapp/scripts/views/reports/AuditLayout.js e4c4a3b > security-admin/src/main/webapp/scripts/views/reports/UserAccessLayout.js > ecda127 > security-admin/src/main/webapp/scripts/views/security_zone/SecurityZone.js > 982387d > security-admin/src/main/webapp/scripts/views/security_zone/ZoneCreate.js > 117e388 > security-admin/src/main/webapp/scripts/views/service/ServiceCreate.js > 2f063fa > security-admin/src/main/webapp/scripts/views/user/UserProfile.js 7ccd5f8 > security-admin/src/main/webapp/scripts/views/users/UserTableLayout.js > 41ca572 > security-admin/src/main/webapp/styles/xa.css 00a2c67 > security-admin/src/main/webapp/templates/common/ProfileBar_tmpl.html > 1c3cfe0 > > security-admin/src/main/webapp/templates/common/ServiceManagerLayout_tmpl.html > ded4c34 > > security-admin/src/main/webapp/templates/common/ServiceManagerSidebarLayout_tmpl.html > PRE-CREATION > security-admin/src/main/webapp/templates/common/TopNav_tmpl.html cfb5eac > security-admin/src/main/webapp/templates/helpers/XAHelpers.js d190a87 > security-admin/src/main/webapp/templates/kms/KmsTableLayout_tmpl.html > 2f42791 > > security-admin/src/main/webapp/templates/permissions/ModulePermsTableLayout_tmpl.html > 4b35587 > > security-admin/src/main/webapp/templates/policies/RangerPolicyTableLayout_tmpl.html > 9dd14c7 > security-admin/src/main/webapp/templates/reports/AuditLayout_tmpl.html > 0f62776 > security-admin/src/main/webapp/templates/reports/UserAccessLayout_tmpl.html > 887d1bf > > security-admin/src/main/webapp/templates/security_zone/SecurityZone_tmpl.html > 6a94d32 > > security-admin/src/main/webapp/templates/security_zone/ZoneResourceItem_tmpl.html > a4dbf6f > security-admin/src/main/webapp/templates/user/UserProfile_tmpl.html 9c4aced > security-admin/src/main/webapp/templates/users/UserTableLayout_tmpl.html > 5e6f567 > > > Diff: https://reviews.apache.org/r/72613/diff/3/ > > > Testing > --- > > Testing is in progress. > > > Thanks, > > Nitin Galave > >
[jira] [Updated] (RANGER-2885) Add missing PermType Java codes for new versions of Kafka
[ https://issues.apache.org/jira/browse/RANGER-2885?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] RickyMa updated RANGER-2885: Attachment: RANGER-2885.patch > Add missing PermType Java codes for new versions of Kafka > - > > Key: RANGER-2885 > URL: https://issues.apache.org/jira/browse/RANGER-2885 > Project: Ranger > Issue Type: Bug > Components: admin, Ranger >Affects Versions: master >Reporter: RickyMa >Priority: Major > Fix For: master > > Attachments: RANGER-2885.patch > > Time Spent: 10m > Remaining Estimate: 0h > > There are codes missing for: > https://issues.apache.org/jira/browse/RANGER-2117 > https://issues.apache.org/jira/browse/RANGER-2692 > When calling > 'http://10.1.0.44:6080/service/public/api/policy?repositoryName=tdw_kafka\=kafka\=false', > it will return 'Unknown' value in permMapList.permList field, which is not > appropriate. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (RANGER-2856) A policy should be deleted if it has no policyItems
[
https://issues.apache.org/jira/browse/RANGER-2856?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17147998#comment-17147998
]
RickyMa commented on RANGER-2856:
-
[~madhan] : It's been a couple of days. Do you have time to review and merge
this? Thank you so much.
> A policy should be deleted if it has no policyItems
> ---
>
> Key: RANGER-2856
> URL: https://issues.apache.org/jira/browse/RANGER-2856
> Project: Ranger
> Issue Type: Bug
> Components: admin, Ranger
>Affects Versions: master
>Reporter: RickyMa
>Priority: Minor
> Fix For: master
>
> Attachments: RANGER-2856.patch
>
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Condition: A policy contains only one policyItem and the policyItem only sets
> one user and no groups.
> Action: Delete the user in the policyItem using API:
> '[http://ip:6080/service/xusers/users/\{id}?forceDelete=true'|http://ip:6080/service/xusers/users/id?forceDelete=true%27,]
> Result: The policy still exists, but it has no policyItems. A policy with no
> policyItems is completely meaningless and it should be deleted.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
[jira] [Created] (RANGER-2885) Add missing PermType Java codes for new versions of Kafka
RickyMa created RANGER-2885: --- Summary: Add missing PermType Java codes for new versions of Kafka Key: RANGER-2885 URL: https://issues.apache.org/jira/browse/RANGER-2885 Project: Ranger Issue Type: Bug Components: admin, Ranger Affects Versions: master Reporter: RickyMa Fix For: master There are codes missing for: https://issues.apache.org/jira/browse/RANGER-2117 https://issues.apache.org/jira/browse/RANGER-2692 When calling 'http://10.1.0.44:6080/service/public/api/policy?repositoryName=tdw_kafka\=kafka\=false', it will return 'Unknown' value in permMapList.permList field, which is not appropriate. -- This message was sent by Atlassian Jira (v8.3.4#803005)
[jira] [Commented] (RANGER-2885) Add missing PermType Java codes for new versions of Kafka
[ https://issues.apache.org/jira/browse/RANGER-2885?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17147978#comment-17147978 ] RickyMa commented on RANGER-2885: - The review request is ready. Can anyone please review this? Thanks a lot. > Add missing PermType Java codes for new versions of Kafka > - > > Key: RANGER-2885 > URL: https://issues.apache.org/jira/browse/RANGER-2885 > Project: Ranger > Issue Type: Bug > Components: admin, Ranger >Affects Versions: master >Reporter: RickyMa >Priority: Major > Fix For: master > > Attachments: RANGER-2885.patch > > Time Spent: 10m > Remaining Estimate: 0h > > There are codes missing for: > https://issues.apache.org/jira/browse/RANGER-2117 > https://issues.apache.org/jira/browse/RANGER-2692 > When calling > 'http://10.1.0.44:6080/service/public/api/policy?repositoryName=tdw_kafka\=kafka\=false', > it will return 'Unknown' value in permMapList.permList field, which is not > appropriate. -- This message was sent by Atlassian Jira (v8.3.4#803005)
Re: Review Request 72613: RANGER-2863 : Ranger UI Improvement.
--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/72613/#review221092 --- Ship it! Ship It! - Madhan Neethiraj On June 29, 2020, 12:52 p.m., Nitin Galave wrote: > > --- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/72613/ > --- > > (Updated June 29, 2020, 12:52 p.m.) > > > Review request for ranger, Ankita Sinha, Dhaval Shah, Dineshkumar Yadav, > Gautam Borad, Jayendra Parab, Kishor Gollapalliwar, Madhan Neethiraj, Mehul > Parikh, Mugdha Varadkar, Pradeep Agrawal, and Velmurugan Periasamy. > > > Bugs: RANGER-2863 > https://issues.apache.org/jira/browse/RANGER-2863 > > > Repository: ranger > > > Description > --- > > UI Improvement > 1 . Added sidebar for all page. This will make navigation between various > repositories a lot easier. > > > Diffs > - > > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.eot > PRE-CREATION > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.svg > PRE-CREATION > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.ttf > PRE-CREATION > > security-admin/src/main/webapp/fonts/fontapachecomponent/apache_component_font.woff > PRE-CREATION > security-admin/src/main/webapp/index.html 392f0ab > security-admin/src/main/webapp/scripts/App.js 937ee27 > security-admin/src/main/webapp/scripts/Main.js 772de5b > security-admin/src/main/webapp/scripts/controllers/Controller.js 1c3ec62 > security-admin/src/main/webapp/scripts/controllers/NController.js > PRE-CREATION > security-admin/src/main/webapp/scripts/views/common/ProfileBar.js eda > security-admin/src/main/webapp/scripts/views/common/TopNav.js 9d4f0a3 > security-admin/src/main/webapp/scripts/views/kms/KMSTableLayout.js ccc7b45 > > security-admin/src/main/webapp/scripts/views/permissions/ModulePermsTableLayout.js > 9e2260a > > security-admin/src/main/webapp/scripts/views/policies/NRangerPolicyTableLayout.js > PRE-CREATION > > security-admin/src/main/webapp/scripts/views/policies/RangerPolicyTableLayout.js > 5162dec > > security-admin/src/main/webapp/scripts/views/policymanager/NServiceLayout.js > PRE-CREATION > security-admin/src/main/webapp/scripts/views/policymanager/ServiceLayout.js > de81182 > > security-admin/src/main/webapp/scripts/views/policymanager/ServiceLayoutSidebar.js > PRE-CREATION > security-admin/src/main/webapp/scripts/views/reports/AuditLayout.js e4c4a3b > security-admin/src/main/webapp/scripts/views/reports/UserAccessLayout.js > ecda127 > security-admin/src/main/webapp/scripts/views/security_zone/SecurityZone.js > 982387d > security-admin/src/main/webapp/scripts/views/security_zone/ZoneCreate.js > 117e388 > security-admin/src/main/webapp/scripts/views/service/ServiceCreate.js > 2f063fa > security-admin/src/main/webapp/scripts/views/user/UserProfile.js 7ccd5f8 > security-admin/src/main/webapp/scripts/views/users/UserTableLayout.js > 41ca572 > security-admin/src/main/webapp/styles/xa.css 00a2c67 > security-admin/src/main/webapp/templates/common/ProfileBar_tmpl.html > 1c3cfe0 > > security-admin/src/main/webapp/templates/common/ServiceManagerLayout_tmpl.html > ded4c34 > > security-admin/src/main/webapp/templates/common/ServiceManagerSidebarLayout_tmpl.html > PRE-CREATION > security-admin/src/main/webapp/templates/common/TopNav_tmpl.html cfb5eac > security-admin/src/main/webapp/templates/helpers/XAHelpers.js d190a87 > security-admin/src/main/webapp/templates/kms/KmsTableLayout_tmpl.html > 2f42791 > > security-admin/src/main/webapp/templates/permissions/ModulePermsTableLayout_tmpl.html > 4b35587 > > security-admin/src/main/webapp/templates/policies/RangerPolicyTableLayout_tmpl.html > 9dd14c7 > security-admin/src/main/webapp/templates/reports/AuditLayout_tmpl.html > 0f62776 > security-admin/src/main/webapp/templates/reports/UserAccessLayout_tmpl.html > 887d1bf > > security-admin/src/main/webapp/templates/security_zone/SecurityZone_tmpl.html > 6a94d32 > > security-admin/src/main/webapp/templates/security_zone/ZoneResourceItem_tmpl.html > a4dbf6f > security-admin/src/main/webapp/templates/user/UserProfile_tmpl.html 9c4aced > security-admin/src/main/webapp/templates/users/UserTableLayout_tmpl.html > 5e6f567 > > > Diff: https://reviews.apache.org/r/72613/diff/3/ > > > Testing > --- > > Testing is in progress. > > > Thanks, > > Nitin Galave > >
[GitHub] [ranger] rickyma opened a new pull request #67: RANGER-2885: Add missing PermType Java codes for new versions of Kafka
rickyma opened a new pull request #67: URL: https://github.com/apache/ranger/pull/67 There are codes missing for: [RANGER-2117](https://issues.apache.org/jira/browse/RANGER-2117) [RANGER-2692](https://issues.apache.org/jira/browse/RANGER-2692) When calling 'http://10.1.0.44:6080/service/public/api/policy?repositoryName=tdw_kafka\=kafka\=false', it will return 'Unknown' value in permMapList.permList field, which is not appropriate. This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
[jira] [Updated] (RANGER-2863) Ranger UI Improvement.
[ https://issues.apache.org/jira/browse/RANGER-2863?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Nitin Galave updated RANGER-2863: - Attachment: 0003-RANGER-2863.patch > Ranger UI Improvement. > -- > > Key: RANGER-2863 > URL: https://issues.apache.org/jira/browse/RANGER-2863 > Project: Ranger > Issue Type: New Feature > Components: Ranger >Reporter: Nitin Galave >Assignee: Nitin Galave >Priority: Major > Attachments: 0001-RANGER-2863.patch, 0002-RANGER-2863.patch, > 0003-RANGER-2863.patch, display1.png, display2.png > > > UI Improvement > 1 . Added sidebar for all page. This will make navigation between various > repositories a lot easier -- This message was sent by Atlassian Jira (v8.3.4#803005)
Review Request 72628: RANGER-2885: Add missing PermType Java codes for new versions of Kafka
--- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/72628/ --- Review request for ranger. Bugs: RANGER-2885 https://issues.apache.org/jira/browse/RANGER-2885 Repository: ranger Description --- There are codes missing for: https://issues.apache.org/jira/browse/RANGER-2117 https://issues.apache.org/jira/browse/RANGER-2692 When calling 'http://10.1.0.44:6080/service/public/api/policy?repositoryName=tdw_kafka\=kafka\=false', it will return 'Unknown' value in permMapList.permList field, which is not appropriate. Diffs - security-admin/src/main/java/org/apache/ranger/common/AppConstants.java e190bbc8b security-admin/src/main/java/org/apache/ranger/common/ServiceUtil.java 2b1a3fa30 Diff: https://reviews.apache.org/r/72628/diff/1/ Testing --- 1.Compilation OK 2.Already used in production environment Thanks, Haoxiang Ma
[jira] [Commented] (RANGER-2863) Ranger UI Improvement.
[ https://issues.apache.org/jira/browse/RANGER-2863?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17148070#comment-17148070 ] Madhan Neethiraj commented on RANGER-2863: -- The updated UI looks good! Thanks [~nitin.galave]! +2 > Ranger UI Improvement. > -- > > Key: RANGER-2863 > URL: https://issues.apache.org/jira/browse/RANGER-2863 > Project: Ranger > Issue Type: New Feature > Components: Ranger >Reporter: Nitin Galave >Assignee: Nitin Galave >Priority: Major > Attachments: 0001-RANGER-2863.patch, 0002-RANGER-2863.patch, > 0003-RANGER-2863.patch, display1.png, display2.png > > > UI Improvement > 1 . Added sidebar for all page. This will make navigation between various > repositories a lot easier -- This message was sent by Atlassian Jira (v8.3.4#803005)
