Hi Madhan, When adding the Starrocks plugin, it creates a whole lot of access policies for the root user which allows me to connect and works fine with a row level filter as user root. Looking at user root, I see its an external user I added the new user in Starrocks and granted privileges but I think the issue is related to syncing this with ranger. When looking at the audit, I see that I’m see a “wrong password” for user rangersync. I’ve changed the password under users and restarted usersync but still no luck.
Regards Steven From: Madhan Neethiraj Sent: Saturday, August 17, 2024 2:10 AM To: user@ranger.apache.org ; swe...@iafrica.com Subject: Re: Adding new users Hello Steven, a.. adding a new user in Ranger and granting a access policy to catalog/database/table (I’m using the quickstart tutorial), we cannot even connect to the database as this user. Does connecting to the database require any permission via Ranger policies? Madhan From: Steven Weiss <swe...@iafrica.com> Reply-To: "user@ranger.apache.org" <user@ranger.apache.org> Date: Tuesday, August 13, 2024 at 7:35 AM To: "user@ranger.apache.org" <user@ranger.apache.org> Subject: Adding new users Hi, We’re pretty new to the ranger security framework. We’re testing a Starrocks plugin along with row level authentication for users. It seems to work for user root however after adding a new user in Ranger and granting a access policy to catalog/database/table (I’m using the quickstart tutorial), we cannot even connect to the database as this user. I’ve tried creating the user and doing grants inside the SR database as well to no avail. I’ve got usersync running as well and here again, it seems to work for user root as when I change a policy my data access is restricted. Any pointers in the right direction would be greatly appreciated. Regards Steven
