Uploaded image for project: 'Ranger'
  1. Ranger
  2. RANGER-4771

Remove the calls to ensureAdminAccess() in grantAccess() and revokeAccess()

    XMLWordPrintableJSON

Details

    • Task
    • Status: Open
    • Major
    • Resolution: Unresolved
    • None
    • None
    • admin
    • None

    Description

      We added calls to ensureAdminAccess() in grantAccess() and revokeAccess() in RANGER-4445.

      But according to https://github.com/apache/ranger/blame/master/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java#L1251 and https://github.com/apache/ranger/blame/master/security-admin/src/main/java/org/apache/ranger/rest/ServiceREST.java#L1492, grantAccess() and revokeAccess() are open API's. Thus, it seems we could safely remove the calls to ensureAdminAccess() in these 2 places.

      Removing the calls to ensureAdminAccess() also allows the users of other Apache components, e.g., Apache Impala, to test the integration with Apache Ranger, since at the moment Apache Impala stills relies on grantAccess() and revokeAccess() to perform authorization-related tests.

      Attachments

        Issue Links

          blocks

          Task - A task that needs to be done. IMPALA-12921 Consider adding support for locally built Ranger

          • Major - Major loss of function.
          • Open

          Activity

            People

              Unassigned Unassigned
              fangyurao Fang-Yu Rao
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated: