[jira] [Updated] (ATLAS-3856) Create new entity typeDefs for Apache Ozone

2020-06-22 Thread Nikhil Bonte (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3856?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Nikhil Bonte updated ATLAS-3856:

Attachment: ATLAS-3856-Create-new-entity-typeDefs-for-Apache-Ozone-v0.patch

> Create new entity typeDefs for Apache Ozone
> ---
>
> Key: ATLAS-3856
> URL: https://issues.apache.org/jira/browse/ATLAS-3856
> Project: Atlas
>  Issue Type: New Feature
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: Nikhil Bonte
>Assignee: Nikhil Bonte
>Priority: Major
> Attachments: 
> ATLAS-3856-Create-new-entity-typeDefs-for-Apache-Ozone-v0.patch
>
>
> Add following ozone typeDefs to Atlas models
>  * Ozone volume
>  * Ozone bucket
>  * Ozone key



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Re: Review Request 72614: ATLAS-3856 Create new entity types for Apache Ozone

2020-06-22 Thread Nikhil Bonte 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72614/
---

(Updated June 23, 2020, 5:45 a.m.)


Review request for atlas, Ashutosh Mestry, Jayendra Parab, madhan, Nixon 
Rodrigues, Sarath Subramanian, and Sidharth Mishra.


Bugs: ATLAS-3856
https://issues.apache.org/jira/browse/ATLAS-3856


Repository: atlas


Description
---

Add following ozone typeDefs to Atlas models

Ozone volume
Ozone bucket
Ozone key


Diffs
-

  addons/models/3000-Cloud/3050-ozone-typedefs.json PRE-CREATION 


Diff: https://reviews.apache.org/r/72614/diff/1/


Testing
---


Thanks,

Nikhil Bonte

[jira] [Updated] (ATLAS-3845) Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread chaitali borole (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3845?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

chaitali borole updated ATLAS-3845:
---
Description: 
GET entity API : /api/atlas/v2/entity/guid/

returns 403 with right error message but

 API : /api/atlas/entities//audit returns the Audit details 
for the entity

> Audit API  returns the audit information for an unauthorised entity
> ---
>
> Key: ATLAS-3845
> URL: https://issues.apache.org/jira/browse/ATLAS-3845
> Project: Atlas
>  Issue Type: Bug
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
>  Labels: audit
> Fix For: 2.1.0
>
>
> GET entity API : /api/atlas/v2/entity/guid/
> returns 403 with right error message but
>  API : /api/atlas/entities//audit returns the Audit 
> details for the entity



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3856) Create new entity typeDefs for Apache Ozone

2020-06-22 Thread Nikhil Bonte (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3856?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Nikhil Bonte updated ATLAS-3856:

Summary: Create new entity typeDefs for Apache Ozone  (was: Create new 
entity types for Apache Ozone)

> Create new entity typeDefs for Apache Ozone
> ---
>
> Key: ATLAS-3856
> URL: https://issues.apache.org/jira/browse/ATLAS-3856
> Project: Atlas
>  Issue Type: New Feature
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: Nikhil Bonte
>Assignee: Nikhil Bonte
>Priority: Major
>
> Add following ozone typeDefs to Atlas models
>  * Ozone volume
>  * Ozone bucket
>  * Ozone key



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3836) Add Apache Ozone support in hive hook

2020-06-22 Thread Nikhil Bonte (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3836?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Nikhil Bonte updated ATLAS-3836:

Summary: Add Apache Ozone support in hive hook  (was: Create new entity 
types for Apache Ozone and update hive hook to handle reference to Ozone path)

> Add Apache Ozone support in hive hook
> -
>
> Key: ATLAS-3836
> URL: https://issues.apache.org/jira/browse/ATLAS-3836
> Project: Atlas
>  Issue Type: New Feature
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: Sarath Subramanian
>Assignee: Nikhil Bonte
>Priority: Major
> Fix For: 2.1.0
>
>
> Apache Ozone is the new object store for Hadoop - 
> [https://hadoop.apache.org/ozone/]
> Apache Atlas needs to add entity types to support creation of Ozone entities. 
> Hive hook should also be updated to create lineage between ozone entities and 
> hive tables (for EXTERNAL TABLE)



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Created] (ATLAS-3856) Create new entity types for Apache Ozone

2020-06-22 Thread Nikhil Bonte (Jira) 
Nikhil Bonte created ATLAS-3856:
---

 Summary: Create new entity types for Apache Ozone
 Key: ATLAS-3856
 URL: https://issues.apache.org/jira/browse/ATLAS-3856
 Project: Atlas
  Issue Type: New Feature
  Components:  atlas-core
Affects Versions: 2.0.0
Reporter: Nikhil Bonte
Assignee: Nikhil Bonte


Add following ozone typeDefs to Atlas models

 * Ozone volume
 * Ozone bucket
 * Ozone key



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3853) Error while creating enum Attribute with special characters.

2020-06-22 Thread Nixon Rodrigues (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3853?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Nixon Rodrigues updated ATLAS-3853:
---
Description: 
I had created an enum with some value in it, and a classification 
ClassificationTest1, now while i was adding an attribute to my 
ClassificationTest1 the value i assigne the enumValue was  

">

and instead of throwing some kind of error message the application threw 
"Something went wrong"  with 500 error code.

The end user in such scenario won't be able to identify what exactly went wrong.

 Stacktrace:-
{noformat}
2020-06-19 17:05:32,390 ERROR - [pool-2-thread-7 - 
37492d4b-63b4-4189-89c3-329b0566ae74:]
 ~ graph rollback due to exception  (GraphTransactionInterceptor:167)
java.lang.IllegalArgumentException: Name contains reserved character ": 
__type.edge.classitest.">
at 
com.google.common.base.Preconditions.checkArgument(Preconditions.java:163)
at 
org.janusgraph.graphdb.types.system.SystemTypeManager.throwIfSystemName(SystemTypeManager.java:74)
at 
org.janusgraph.graphdb.types.StandardRelationTypeMaker.name(StandardRelationTypeMaker.java:181)
at 
org.janusgraph.graphdb.types.StandardRelationTypeMaker.(StandardRelationTypeMaker.java:53)
at 
org.janusgraph.graphdb.types.StandardEdgeLabelMaker.(StandardEdgeLabelMaker.java:41)
at 
org.janusgraph.graphdb.transaction.StandardJanusGraphTx.makeEdgeLabel(StandardJanusGraphTx.java:1052)
at 
org.janusgraph.graphdb.transaction.StandardJanusGraphTx.getOrCreateEdgeLabel(StandardJanusGraphTx.java:1038)
at 
org.janusgraph.graphdb.vertices.AbstractVertex.addEdge(AbstractVertex.java:167)
at 
org.janusgraph.graphdb.vertices.AbstractVertex.addEdge(AbstractVertex.java:37)
at 
org.apache.atlas.repository.graphdb.janus.AtlasJanusGraph.addEdge(AtlasJanusGraph.java:147)
at 
org.apache.atlas.repository.store.graph.v2.AtlasTypeDefGraphStoreV2.addEdge(AtlasTypeDefGraphStoreV2.java:395)
at 
org.apache.atlas.repository.store.graph.v2.AtlasTypeDefGraphStoreV2.getOrCreateEdge(AtlasTypeDefGraphStoreV2.java:387)
at 
org.apache.atlas.repository.store.graph.v2.AtlasStructDefStoreV2.addReferencesForAttribute(AtlasStructDefStoreV2.java:523)
at 
org.apache.atlas.repository.store.graph.v2.AtlasStructDefStoreV2.updateVertexAddReferences(AtlasStructDefStoreV2.java:471)
at 
org.apache.atlas.repository.store.graph.v2.AtlasClassificationDefStoreV2.updateVertexAddReferences(AtlasClassificationDefStoreV2.java:338)
at 
org.apache.atlas.repository.store.graph.v2.AtlasClassificationDefStoreV2.updateByGuid(AtlasClassificationDefStoreV2.java:254)
at 
org.apache.atlas.repository.store.graph.v2.AtlasClassificationDefStoreV2.update(AtlasClassificationDefStoreV2.java:183)
at 
org.apache.atlas.repository.store.graph.v2.AtlasClassificationDefStoreV2.update(AtlasClassificationDefStoreV2.java:48)
at 
org.apache.atlas.repository.store.graph.AtlasTypeDefGraphStore.updateGraphStore(AtlasTypeDefGraphStore.java:1029)
at 
org.apache.atlas.repository.store.graph.AtlasTypeDefGraphStore.updateTypesDef(AtlasTypeDefGraphStore.java:481)
{noformat}
 

  was:
I had created an enum with some value in it, and a classification 
ClassificationTest1, now while i was adding an attribute to my 
ClassificationTest1 the value i assigne the enumValue was  

">

and instead of throwing some kind of error message the application threw 
"Something went wrong"  with 500 error code.

The end user in such scenario won't be able to identify what exactly went wrong.

 


> Error while creating enum Attribute with special characters.
> 
>
> Key: ATLAS-3853
> URL: https://issues.apache.org/jira/browse/ATLAS-3853
> Project: Atlas
>  Issue Type: Bug
>Reporter: Mayank Jain
>Assignee: Mayank Jain
>Priority: Major
> Attachments: errorStackTrace.txt
>
>
> I had created an enum with some value in it, and a classification 
> ClassificationTest1, now while i was adding an attribute to my 
> ClassificationTest1 the value i assigne the enumValue was  
> ">
> and instead of throwing some kind of error message the application threw 
> "Something went wrong"  with 500 error code.
> The end user in such scenario won't be able to identify what exactly went 
> wrong.
>  Stacktrace:-
> {noformat}
> 2020-06-19 17:05:32,390 ERROR - [pool-2-thread-7 - 
> 37492d4b-63b4-4189-89c3-329b0566ae74:]
>  ~ graph rollback due to exception  (GraphTransactionInterceptor:167)
> java.lang.IllegalArgumentException: Name contains reserved character ": 
> __type.edge.classitest.">
>   at 
> com.google.common.base.Preconditions.checkArgument(Preconditions.java:163)
>   at 
>

[jira] [Updated] (ATLAS-3845) Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3845?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian updated ATLAS-3845:
--
Labels: audit  (was: )

> Audit API  returns the audit information for an unauthorised entity
> ---
>
> Key: ATLAS-3845
> URL: https://issues.apache.org/jira/browse/ATLAS-3845
> Project: Atlas
>  Issue Type: Bug
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
>  Labels: audit
> Fix For: 2.1.0
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3845) Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3845?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian updated ATLAS-3845:
--
Affects Version/s: (was: 3.0.0)
   2.0.0

> Audit API  returns the audit information for an unauthorised entity
> ---
>
> Key: ATLAS-3845
> URL: https://issues.apache.org/jira/browse/ATLAS-3845
> Project: Atlas
>  Issue Type: Bug
>Affects Versions: 2.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3845) Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3845?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian updated ATLAS-3845:
--
Component/s:  atlas-core

> Audit API  returns the audit information for an unauthorised entity
> ---
>
> Key: ATLAS-3845
> URL: https://issues.apache.org/jira/browse/ATLAS-3845
> Project: Atlas
>  Issue Type: Bug
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
> Fix For: 2.1.0
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3845) Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3845?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian updated ATLAS-3845:
--
Fix Version/s: 2.1.0

> Audit API  returns the audit information for an unauthorised entity
> ---
>
> Key: ATLAS-3845
> URL: https://issues.apache.org/jira/browse/ATLAS-3845
> Project: Atlas
>  Issue Type: Bug
>Affects Versions: 2.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
> Fix For: 2.1.0
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (ATLAS-3845) Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread ASF subversion and git services (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3845?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17142427#comment-17142427
 ] 

ASF subversion and git services commented on ATLAS-3845:


Commit 7f42cca10d28af9a05a453db614cdffb58a973aa in atlas's branch 
refs/heads/branch-2.0 from chaitali borole
[ https://gitbox.apache.org/repos/asf?p=atlas.git;h=7f42cca ]

ATLAS-3845 : Audit API returns the audit information for an unauthorised entity

Signed-off-by: Sarath Subramanian 
(cherry picked from commit 474d73c5822183ba8e810615eb195d559ef9589a)


> Audit API  returns the audit information for an unauthorised entity
> ---
>
> Key: ATLAS-3845
> URL: https://issues.apache.org/jira/browse/ATLAS-3845
> Project: Atlas
>  Issue Type: Bug
>Affects Versions: 3.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (ATLAS-3845) Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread ASF subversion and git services (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3845?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17142425#comment-17142425
 ] 

ASF subversion and git services commented on ATLAS-3845:


Commit 474d73c5822183ba8e810615eb195d559ef9589a in atlas's branch 
refs/heads/master from chaitali borole
[ https://gitbox.apache.org/repos/asf?p=atlas.git;h=474d73c ]

ATLAS-3845 : Audit API returns the audit information for an unauthorised entity

Signed-off-by: Sarath Subramanian 


> Audit API  returns the audit information for an unauthorised entity
> ---
>
> Key: ATLAS-3845
> URL: https://issues.apache.org/jira/browse/ATLAS-3845
> Project: Atlas
>  Issue Type: Bug
>Affects Versions: 3.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Resolved] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian resolved ATLAS-3854.
---
Resolution: Fixed

> Upgrade Spring Security version to 4.2.16
> -
>
> Key: ATLAS-3854
> URL: https://issues.apache.org/jira/browse/ATLAS-3854
> Project: Atlas
>  Issue Type: Bug
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: Mandar Ambawane
>Assignee: Mandar Ambawane
>Priority: Major
> Fix For: 2.1.0
>
>
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
>  To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian updated ATLAS-3854:
--
Fix Version/s: 2.1.0

> Upgrade Spring Security version to 4.2.16
> -
>
> Key: ATLAS-3854
> URL: https://issues.apache.org/jira/browse/ATLAS-3854
> Project: Atlas
>  Issue Type: Bug
>Affects Versions: 2.0.0
>Reporter: Mandar Ambawane
>Assignee: Mandar Ambawane
>Priority: Major
> Fix For: 2.1.0
>
>
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
>  To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian updated ATLAS-3854:
--
Component/s:  atlas-core

> Upgrade Spring Security version to 4.2.16
> -
>
> Key: ATLAS-3854
> URL: https://issues.apache.org/jira/browse/ATLAS-3854
> Project: Atlas
>  Issue Type: Bug
>  Components:  atlas-core
>Affects Versions: 2.0.0
>Reporter: Mandar Ambawane
>Assignee: Mandar Ambawane
>Priority: Major
> Fix For: 2.1.0
>
>
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
>  To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Sarath Subramanian (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Sarath Subramanian updated ATLAS-3854:
--
Affects Version/s: 2.0.0

> Upgrade Spring Security version to 4.2.16
> -
>
> Key: ATLAS-3854
> URL: https://issues.apache.org/jira/browse/ATLAS-3854
> Project: Atlas
>  Issue Type: Bug
>Affects Versions: 2.0.0
>Reporter: Mandar Ambawane
>Assignee: Mandar Ambawane
>Priority: Major
>
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
>  To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread ASF subversion and git services (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17142383#comment-17142383
 ] 

ASF subversion and git services commented on ATLAS-3854:


Commit dd08b8d6710940f48f0b5a4b05b93191e909e04d in atlas's branch 
refs/heads/branch-2.0 from Mandar Ambawane
[ https://gitbox.apache.org/repos/asf?p=atlas.git;h=dd08b8d ]

ATLAS-3854 Upgrade Spring Security version to 4.2.16

Signed-off-by: Sarath Subramanian 
(cherry picked from commit c8cf4765bb519fbe4cd4962ce9ab22999fdfaa4b)


> Upgrade Spring Security version to 4.2.16
> -
>
> Key: ATLAS-3854
> URL: https://issues.apache.org/jira/browse/ATLAS-3854
> Project: Atlas
>  Issue Type: Bug
>Reporter: Mandar Ambawane
>Assignee: Mandar Ambawane
>Priority: Major
>
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
>  To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread ASF subversion and git services (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17142382#comment-17142382
 ] 

ASF subversion and git services commented on ATLAS-3854:


Commit c8cf4765bb519fbe4cd4962ce9ab22999fdfaa4b in atlas's branch 
refs/heads/master from Mandar Ambawane
[ https://gitbox.apache.org/repos/asf?p=atlas.git;h=c8cf476 ]

ATLAS-3854 Upgrade Spring Security version to 4.2.16

Signed-off-by: Sarath Subramanian 


> Upgrade Spring Security version to 4.2.16
> -
>
> Key: ATLAS-3854
> URL: https://issues.apache.org/jira/browse/ATLAS-3854
> Project: Atlas
>  Issue Type: Bug
>Reporter: Mandar Ambawane
>Assignee: Mandar Ambawane
>Priority: Major
>
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
>  To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Created] (ATLAS-3855) Bulk entity tag association and bulk api enhancement

2020-06-22 Thread chaitali borole (Jira) 
chaitali borole created ATLAS-3855:
--

 Summary: Bulk entity tag association and bulk api enhancement
 Key: ATLAS-3855
 URL: https://issues.apache.org/jira/browse/ATLAS-3855
 Project: Atlas
  Issue Type: Improvement
Affects Versions: 3.0.0
Reporter: chaitali borole






--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Assigned] (ATLAS-3855) Bulk entity tag association and bulk api enhancement

2020-06-22 Thread chaitali borole (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3855?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

chaitali borole reassigned ATLAS-3855:
--

Assignee: chaitali borole

> Bulk entity tag association and bulk api enhancement
> 
>
> Key: ATLAS-3855
> URL: https://issues.apache.org/jira/browse/ATLAS-3855
> Project: Atlas
>  Issue Type: Improvement
>Affects Versions: 3.0.0
>Reporter: chaitali borole
>Assignee: chaitali borole
>Priority: Major
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3853) Error while creating enum Attribute with special characters.

2020-06-22 Thread Mayank Jain (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3853?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mayank Jain updated ATLAS-3853:
---
Attachment: errorStackTrace.txt

> Error while creating enum Attribute with special characters.
> 
>
> Key: ATLAS-3853
> URL: https://issues.apache.org/jira/browse/ATLAS-3853
> Project: Atlas
>  Issue Type: Bug
>Reporter: Mayank Jain
>Assignee: Mayank Jain
>Priority: Major
> Attachments: errorStackTrace.txt
>
>
> I had created an enum with some value in it, and a classification 
> ClassificationTest1, now while i was adding an attribute to my 
> ClassificationTest1 the value i assigne the enumValue was  
> ">
> and instead of throwing some kind of error message the application threw 
> "Something went wrong"  with 500 error code.
> The end user in such scenario won't be able to identify what exactly went 
> wrong.
>  



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Re: Review Request 72601: ATLAS-3845 : Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread Madhan Neethiraj 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72601/#review221047
---


Ship it!




Ship It!

- Madhan Neethiraj


On June 22, 2020, 5:15 p.m., chaitali wrote:
> 
> ---
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72601/
> ---
> 
> (Updated June 22, 2020, 5:15 p.m.)
> 
> 
> Review request for atlas, Jayendra Parab, Madhan Neethiraj, Nixon Rodrigues, 
> and Sarath Subramanian.
> 
> 
> Bugs: ATLAS-3845
> https://issues.apache.org/jira/browse/ATLAS-3845
> 
> 
> Repository: atlas
> 
> 
> Description
> ---
> 
> Audit api was returning all entities details even after blocking the rights 
> for read entity in Ranger policy-This patch handles the issue by adding 
> verify access check.
> 
> 
> Diffs
> -
> 
>   webapp/src/main/java/org/apache/atlas/web/rest/EntityREST.java b1055605f 
> 
> 
> Diff: https://reviews.apache.org/r/72601/diff/3/
> 
> 
> Testing
> ---
> 
> Tested by adding deny policy for read/create entity in Ranger
> 
> 
> Thanks,
> 
> chaitali
> 
>

Re: Review Request 72601: ATLAS-3845 : Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread chaitali 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72601/
---

(Updated June 22, 2020, 5:15 p.m.)


Review request for atlas, Jayendra Parab, Madhan Neethiraj, Nixon Rodrigues, 
and Sarath Subramanian.


Bugs: ATLAS-3845
https://issues.apache.org/jira/browse/ATLAS-3845


Repository: atlas


Description
---

Audit api was returning all entities details even after blocking the rights for 
read entity in Ranger policy-This patch handles the issue by adding verify 
access check.


Diffs (updated)
-

  webapp/src/main/java/org/apache/atlas/web/rest/EntityREST.java b1055605f 


Diff: https://reviews.apache.org/r/72601/diff/3/

Changes: https://reviews.apache.org/r/72601/diff/2-3/


Testing
---

Tested by adding deny policy for read/create entity in Ranger


Thanks,

chaitali

[jira] [Commented] (ATLAS-3851) UI: Remove hourglass icon from in progress entity

2020-06-22 Thread ASF subversion and git services (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3851?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17142230#comment-17142230
 ] 

ASF subversion and git services commented on ATLAS-3851:


Commit d31f0d944111ac00f1c0feb3319a2c410d22a659 in atlas's branch 
refs/heads/branch-2.0 from Keval Bhatt
[ https://gitbox.apache.org/repos/asf?p=atlas.git;h=d31f0d9 ]

ATLAS-3851: UI: removed hourglass icon from lineage graph legend #2

(cherry picked from commit 79caa79ad72fca25cecaebdcfcdf5be095852933)


> UI: Remove hourglass icon from in progress entity
> -
>
> Key: ATLAS-3851
> URL: https://issues.apache.org/jira/browse/ATLAS-3851
> Project: Atlas
>  Issue Type: Improvement
>Reporter: Keval Bhatt
>Assignee: Keval Bhatt
>Priority: Major
> Fix For: 2.1.0, 3.0.0
>
> Attachments: ATLAS-3851.patch
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (ATLAS-3851) UI: Remove hourglass icon from in progress entity

2020-06-22 Thread ASF subversion and git services (Jira) 


[ 
https://issues.apache.org/jira/browse/ATLAS-3851?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17142228#comment-17142228
 ] 

ASF subversion and git services commented on ATLAS-3851:


Commit 79caa79ad72fca25cecaebdcfcdf5be095852933 in atlas's branch 
refs/heads/master from Keval Bhatt
[ https://gitbox.apache.org/repos/asf?p=atlas.git;h=79caa79 ]

ATLAS-3851: UI: removed hourglass icon from lineage graph legend #2


> UI: Remove hourglass icon from in progress entity
> -
>
> Key: ATLAS-3851
> URL: https://issues.apache.org/jira/browse/ATLAS-3851
> Project: Atlas
>  Issue Type: Improvement
>Reporter: Keval Bhatt
>Assignee: Keval Bhatt
>Priority: Major
> Fix For: 2.1.0, 3.0.0
>
> Attachments: ATLAS-3851.patch
>
>




--
This message was sent by Atlassian Jira
(v8.3.4#803005)

RE: Navigating Atlas Documentation on Github

2020-06-22 Thread Lynch, Matthew 
Keval,

Thank you for the information.
I’ll let you know if I have any other questions.

Matthew Lynch
Data Governance Analyst Intern
_

Bank of the West
1625 West Fountainhead Parkway
Tempe, Arizona 85282
C: 505.414.8353
matthew.ly...@bankofthewest.com

[BankPic]

From: Keval Bhatt [mailto:kbh...@apache.org]
Sent: Saturday, June 20, 2020 7:25 AM
To: Lynch, Matthew ; dev@atlas.apache.org
Subject: Re: Navigating Atlas Documentation on Github

Caution: This email originated from an external sender. Do not click on links 
or open attachments unless you were expecting this message from this sender.



Hi Matthew,

Please find sample payload to create hive_table entity with replicatedTo 
attribute:

{
  "entity": {
"attributes": {
  "db": {
"guid": "3cc0cb04-2d8e-4d39-9bb0-4aefaf950dcc",
"typeName": "hive_db"
  },
  "name": "temptable",
  "owner": "owner",
  "parameters": {},
  "qualifiedName": 
"db_1.temptable@mycluster0",
  "replicatedTo": [
{
  "guid": "15aa1cab-b5e1-46bd-8077-9d00a72026ff",
  "typeName": "AtlasServer"
}
  ],
  "retention": 0,
  "tableType": "MANAGED_TABLE",
  "temporary": true
},
"typeName": "hive_table"
  },
  "referredEntities": {}
}

Thanks,
Keval


On Thu, Jun 18, 2020 at 2:39 AM Lynch, Matthew 
mailto:matthew.ly...@bankofthewest.com>> wrote:
Keval,

My name is Matthew Lynch and I’m currently a data governance analyst with Bank 
of the West.
I’ve been using a custom Python script for updating metadata attributes for 
entities (primarily hive_tables and hive_columns) through post requests in v2 
REST API.
However, I’ve encountered an interesting post error that states: 
“{"errorCode":"ATLAS-404-00-007","errorMessage":"Invalid instance 
creation/updation parameters passed : hive_column.replicatedTo=TestRep: invalid 
value for type array"}”.
I’ve been looking all over the place for documentation on what primitive type 
values replicatedTo and replicatedFrom attributes can take but have been unable 
to find them so far.
Can you point me in the right direction?

Matthew Lynch
Data Governance Analyst Intern
_

Bank of the West
1625 West Fountainhead Parkway
Tempe, Arizona 85282
C: 505.414.8353
matthew.ly...@bankofthewest.com

[BankPic]



IMPORTANT NOTICE: This message is intended only for the addressee and may 
contain confidential, privileged information. If you are not the intended 
recipient, you may not use, copy or disclose any information contained in the 
message. If you have received this message in error, please notify the sender 
by reply e-mail and delete the message.

--

IMPORTANT NOTICE:   This message is intended only for the addressee and may 
contain confidential, privileged information.  If you are not the intended 
recipient, you may not use, copy or disclose any information contained in the 
message.  If you have received this message in error, please notify the sender 
by reply e-mail and delete the message.

Re: Review Request 72601: ATLAS-3845 : Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread Madhan Neethiraj 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72601/#review221046
---


Fix it, then Ship it!





webapp/src/main/java/org/apache/atlas/web/rest/EntityREST.java
Lines 809 (patched)


I suggest to add a comment here, to clarify why this call us needed:
 // following call enforces authorization for entity-read
 entitiesStore.getHeaderById(guid);


- Madhan Neethiraj


On June 22, 2020, 2:49 p.m., chaitali wrote:
> 
> ---
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72601/
> ---
> 
> (Updated June 22, 2020, 2:49 p.m.)
> 
> 
> Review request for atlas, Jayendra Parab, Madhan Neethiraj, Nixon Rodrigues, 
> and Sarath Subramanian.
> 
> 
> Bugs: ATLAS-3845
> https://issues.apache.org/jira/browse/ATLAS-3845
> 
> 
> Repository: atlas
> 
> 
> Description
> ---
> 
> Audit api was returning all entities details even after blocking the rights 
> for read entity in Ranger policy-This patch handles the issue by adding 
> verify access check.
> 
> 
> Diffs
> -
> 
>   webapp/src/main/java/org/apache/atlas/web/rest/EntityREST.java b1055605f 
> 
> 
> Diff: https://reviews.apache.org/r/72601/diff/2/
> 
> 
> Testing
> ---
> 
> Tested by adding deny policy for read/create entity in Ranger
> 
> 
> Thanks,
> 
> chaitali
> 
>

Re: Review Request 72601: ATLAS-3845 : Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread Sarath Subramanian 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72601/#review221045
---


Ship it!




Ship It!

- Sarath Subramanian


On June 22, 2020, 7:49 a.m., chaitali wrote:
> 
> ---
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72601/
> ---
> 
> (Updated June 22, 2020, 7:49 a.m.)
> 
> 
> Review request for atlas, Jayendra Parab, Madhan Neethiraj, Nixon Rodrigues, 
> and Sarath Subramanian.
> 
> 
> Bugs: ATLAS-3845
> https://issues.apache.org/jira/browse/ATLAS-3845
> 
> 
> Repository: atlas
> 
> 
> Description
> ---
> 
> Audit api was returning all entities details even after blocking the rights 
> for read entity in Ranger policy-This patch handles the issue by adding 
> verify access check.
> 
> 
> Diffs
> -
> 
>   webapp/src/main/java/org/apache/atlas/web/rest/EntityREST.java b1055605f 
> 
> 
> Diff: https://reviews.apache.org/r/72601/diff/2/
> 
> 
> Testing
> ---
> 
> Tested by adding deny policy for read/create entity in Ranger
> 
> 
> Thanks,
> 
> chaitali
> 
>

Re: Review Request 72612: ATLAS-3854: Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Sarath Subramanian 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72612/#review221044
---


Ship it!




Ship It!

- Sarath Subramanian


On June 22, 2020, 7:53 a.m., Mandar Ambawane wrote:
> 
> ---
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72612/
> ---
> 
> (Updated June 22, 2020, 7:53 a.m.)
> 
> 
> Review request for atlas, Jayendra Parab, Madhan Neethiraj, Nixon Rodrigues, 
> and Sarath Subramanian.
> 
> 
> Bugs: ATLAS-3854
> https://issues.apache.org/jira/browse/ATLAS-3854
> 
> 
> Repository: atlas
> 
> 
> Description
> ---
> 
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
> 
> To resolve this need to upgrade Spring security to 4.2.16
> 
> 
> Diffs
> -
> 
>   pom.xml 8d02a6f 
> 
> 
> Diff: https://reviews.apache.org/r/72612/diff/1/
> 
> 
> Testing
> ---
> 
> PreCommit: 
> https://builds.apache.org/job/PreCommit-ATLAS-Build-Test/1970/console
> 
> 
> Thanks,
> 
> Mandar Ambawane
> 
>

Re: Review Request 72612: ATLAS-3854: Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Mandar Ambawane 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72612/
---

(Updated June 22, 2020, 2:53 p.m.)


Review request for atlas, Jayendra Parab, Madhan Neethiraj, Nixon Rodrigues, 
and Sarath Subramanian.


Summary (updated)
-

ATLAS-3854: Upgrade Spring Security version to 4.2.16


Bugs: ATLAS-3854
https://issues.apache.org/jira/browse/ATLAS-3854


Repository: atlas


Description
---

Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
null initialization vector with CBC Mode in the implementation of the queryable 
text encryptor. A malicious user with access to the data that has been 
encrypted using such an encryptor may be able to derive the unencrypted values 
using a dictionary attack.

To resolve this need to upgrade Spring security to 4.2.16


Diffs
-

  pom.xml 8d02a6f 


Diff: https://reviews.apache.org/r/72612/diff/1/


Testing
---

PreCommit: https://builds.apache.org/job/PreCommit-ATLAS-Build-Test/1970/console


Thanks,

Mandar Ambawane

Re: Review Request 72601: ATLAS-3845 : Audit API returns the audit information for an unauthorised entity

2020-06-22 Thread chaitali 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72601/
---

(Updated June 22, 2020, 2:49 p.m.)


Review request for atlas, Jayendra Parab, Madhan Neethiraj, Nixon Rodrigues, 
and Sarath Subramanian.


Bugs: ATLAS-3845
https://issues.apache.org/jira/browse/ATLAS-3845


Repository: atlas


Description
---

Audit api was returning all entities details even after blocking the rights for 
read entity in Ranger policy-This patch handles the issue by adding verify 
access check.


Diffs (updated)
-

  webapp/src/main/java/org/apache/atlas/web/rest/EntityREST.java b1055605f 


Diff: https://reviews.apache.org/r/72601/diff/2/

Changes: https://reviews.apache.org/r/72601/diff/1-2/


Testing
---

Tested by adding deny policy for read/create entity in Ranger


Thanks,

chaitali

Re: Review Request 72610: ATLAS-3850 : Regression, Terms are not getting displayed

2020-06-22 Thread Madhan Neethiraj 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72610/#review221043
---




repository/src/main/java/org/apache/atlas/repository/graph/GraphBackedSearchIndexer.java
Line 367 (original)


Are these labels created else where? If not, I suggest to replace call to 
createEdgeLabel() with a call to createEdgeLabelUsingLabelName()


- Madhan Neethiraj


On June 22, 2020, 12:08 p.m., Pinal Shah wrote:
> 
> ---
> This is an automatically generated e-mail. To reply, visit:
> https://reviews.apache.org/r/72610/
> ---
> 
> (Updated June 22, 2020, 12:08 p.m.)
> 
> 
> Review request for atlas, Ashutosh Mestry, Jayendra Parab, Madhan Neethiraj, 
> Nixon Rodrigues, and Sarath Subramanian.
> 
> 
> Bugs: ATLAS-3850
> https://issues.apache.org/jira/browse/ATLAS-3850
> 
> 
> Repository: atlas
> 
> 
> Description
> ---
> 
> During basic search, terms(meanings) in the entity response header is empty, 
> because while fetching terms from the vertex edge, term label is wrong
> 
> **Solution: Removed "__" prefix from the term edge label while fetching.**
> 
> TO-DO: Find out reason or remove this line
> GraphBackedSearchIndexer.initialize(){
>  --> createEdgeLabel(management, Constants.TERM_ASSIGNMENT_LABEL);
> }
> 
> 
> Diffs
> -
> 
>   
> repository/src/main/java/org/apache/atlas/repository/graph/GraphBackedSearchIndexer.java
>  4a09b08a4 
>   
> repository/src/main/java/org/apache/atlas/repository/store/graph/v2/EntityGraphRetriever.java
>  757fcb116 
> 
> 
> Diff: https://reviews.apache.org/r/72610/diff/2/
> 
> 
> Testing
> ---
> 
> Precommit : 
> https://builds.apache.org/job/PreCommit-ATLAS-Build-Test/1971/console
> 
> 
> Thanks,
> 
> Pinal Shah
> 
>

Re: Review Request 72610: ATLAS-3850 : Regression, Terms are not getting displayed

2020-06-22 Thread Pinal Shah 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72610/
---

(Updated June 22, 2020, 12:08 p.m.)


Review request for atlas, Ashutosh Mestry, Jayendra Parab, Madhan Neethiraj, 
Nixon Rodrigues, and Sarath Subramanian.


Bugs: ATLAS-3850
https://issues.apache.org/jira/browse/ATLAS-3850


Repository: atlas


Description
---

During basic search, terms(meanings) in the entity response header is empty, 
because while fetching terms from the vertex edge, term label is wrong

**Solution: Removed "__" prefix from the term edge label while fetching.**

TO-DO: Find out reason or remove this line
GraphBackedSearchIndexer.initialize(){
 --> createEdgeLabel(management, Constants.TERM_ASSIGNMENT_LABEL);
}


Diffs
-

  
repository/src/main/java/org/apache/atlas/repository/graph/GraphBackedSearchIndexer.java
 4a09b08a4 
  
repository/src/main/java/org/apache/atlas/repository/store/graph/v2/EntityGraphRetriever.java
 757fcb116 


Diff: https://reviews.apache.org/r/72610/diff/2/


Testing (updated)
---

Precommit : 
https://builds.apache.org/job/PreCommit-ATLAS-Build-Test/1971/console


Thanks,

Pinal Shah

[jira] [Created] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Mandar Ambawane (Jira) 
Mandar Ambawane created ATLAS-3854:
--

 Summary: Upgrade Spring Security version to 4.2.16
 Key: ATLAS-3854
 URL: https://issues.apache.org/jira/browse/ATLAS-3854
 Project: Atlas
  Issue Type: Bug
Reporter: Mandar Ambawane
Assignee: Mandar Ambawane


Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
null initialization vector with CBC Mode in the implementation of the queryable 
text encryptor. A malicious user with access to the data that has been 
encrypted using such an encryptor may be able to derive the unencrypted values 
using a dictionary attack.
To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Updated] (ATLAS-3854) Upgrade Spring Security version to 4.2.16

2020-06-22 Thread Mandar Ambawane (Jira) 


 [ 
https://issues.apache.org/jira/browse/ATLAS-3854?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Mandar Ambawane updated ATLAS-3854:
---
Description: 
Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
null initialization vector with CBC Mode in the implementation of the queryable 
text encryptor. A malicious user with access to the data that has been 
encrypted using such an encryptor may be able to derive the unencrypted values 
using a dictionary attack.


 To resolve this need to upgrade Spring security to 4.2.16

  was:
Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
null initialization vector with CBC Mode in the implementation of the queryable 
text encryptor. A malicious user with access to the data that has been 
encrypted using such an encryptor may be able to derive the unencrypted values 
using a dictionary attack.
To resolve this need to upgrade Spring security to 4.2.16


> Upgrade Spring Security version to 4.2.16
> -
>
> Key: ATLAS-3854
> URL: https://issues.apache.org/jira/browse/ATLAS-3854
> Project: Atlas
>  Issue Type: Bug
>Reporter: Mandar Ambawane
>Assignee: Mandar Ambawane
>Priority: Major
>
> Spring Security versions 5.3.x prior to 5.3.2, 5.2.x prior to 5.2.4, 5.1.x 
> prior to 5.1.10, 5.0.x prior to 5.0.16 and 4.2.x prior to 4.2.16 use a fixed 
> null initialization vector with CBC Mode in the implementation of the 
> queryable text encryptor. A malicious user with access to the data that has 
> been encrypted using such an encryptor may be able to derive the unencrypted 
> values using a dictionary attack.
>  To resolve this need to upgrade Spring security to 4.2.16



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Re: Review Request 72610: ATLAS-3850 : Regression, Terms are not getting displayed

2020-06-22 Thread Pinal Shah 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72610/
---

(Updated June 22, 2020, 9:23 a.m.)


Review request for atlas, Ashutosh Mestry, Jayendra Parab, Madhan Neethiraj, 
Nixon Rodrigues, and Sarath Subramanian.


Bugs: ATLAS-3850
https://issues.apache.org/jira/browse/ATLAS-3850


Repository: atlas


Description
---

During basic search, terms(meanings) in the entity response header is empty, 
because while fetching terms from the vertex edge, term label is wrong

**Solution: Removed "__" prefix from the term edge label while fetching.**

TO-DO: Find out reason or remove this line
GraphBackedSearchIndexer.initialize(){
 --> createEdgeLabel(management, Constants.TERM_ASSIGNMENT_LABEL);
}


Diffs (updated)
-

  
repository/src/main/java/org/apache/atlas/repository/graph/GraphBackedSearchIndexer.java
 4a09b08a4 
  
repository/src/main/java/org/apache/atlas/repository/store/graph/v2/EntityGraphRetriever.java
 757fcb116 


Diff: https://reviews.apache.org/r/72610/diff/2/

Changes: https://reviews.apache.org/r/72610/diff/1-2/


Testing
---


Thanks,

Pinal Shah

Review Request 72610: ATLAS-3850 : Regression, Terms are not getting displayed

2020-06-22 Thread Pinal Shah 

---
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/72610/
---

Review request for atlas, Ashutosh Mestry, Jayendra Parab, Madhan Neethiraj, 
Nixon Rodrigues, and Sarath Subramanian.


Bugs: ATLAS-3850
https://issues.apache.org/jira/browse/ATLAS-3850


Repository: atlas


Description
---

During basic search, terms(meanings) in the entity response header is empty, 
because while fetching terms from the vertex edge, term label is wrong

**Solution: Removed "__" prefix from the term edge label while fetching.**

TO-DO: Find out reason or remove this line
GraphBackedSearchIndexer.initialize(){
 --> createEdgeLabel(management, Constants.TERM_ASSIGNMENT_LABEL);
}


Diffs
-

  
repository/src/main/java/org/apache/atlas/repository/store/graph/v2/EntityGraphRetriever.java
 757fcb116 


Diff: https://reviews.apache.org/r/72610/diff/1/


Testing
---


Thanks,

Pinal Shah