Team
The HAWQ community is working on integrating Ranger as one of their
authorization provider. The HAWQ JIRA
https://issues.apache.org/jira/browse/HAWQ-256 has the high level design
document and also there is a long discussion around the topic.
Since HAWQ is written in C/C++, the plan is to create a new RESTful server in
Java which will host the HAWQ plugin and provide an API will be invoked by HAWQ.
I feel, if we design the API generically, then this service could be also used
by other applications who have difficulty embedding the Ranger Plugin. In other
words, Ranger can provide “Authorization and Auditing as a Service” or (AAaS).
This could be a very powerful feature for Ranger, because it can be centrally
configured for tag syncs, audit destinations, user/group lookups, caching, etc.
And also the dependent jars will be only in this server, so on the component
process/application side, there are no dependencies, except call the REST APIs.
We can also allow the service definitions to be uploaded via JSON.
Please review the API document and give your suggestions here or in the JIRA.
Thanks
Bosco
On 8/14/16, 8:45 PM, "Lili Ma (JIRA)" <j...@apache.org> wrote:
[
https://issues.apache.org/jira/browse/HAWQ-256?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15420594#comment-15420594
]
Lili Ma commented on HAWQ-256:
------------------------------
[~bosco] [~vVineet], Could you help confirm whether these APIs definitions
are OK? Thanks :)
> Integrate Security with Apache Ranger
> -------------------------------------
>
> Key: HAWQ-256
> URL: https://issues.apache.org/jira/browse/HAWQ-256
> Project: Apache HAWQ
> Issue Type: New Feature
> Components: PXF, Security
> Reporter: Michael Andre Pearce (IG)
> Assignee: Lili Ma
> Fix For: backlog
>
> Attachments: HAWQRangerSupportDesign.pdf
>
>
> Integrate security with Apache Ranger for a unified Hadoop security
solution.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
