kylin-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "peng.jianhua (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (KYLIN-3074) Change cube access to project access in ExternalAclProvider.java
Date Mon, 04 Dec 2017 06:57:00 GMT

     [ https://issues.apache.org/jira/browse/KYLIN-3074?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

peng.jianhua updated KYLIN-3074:
--------------------------------
    Affects Version/s: v2.2.0
             Priority: Major  (was: Minor)
          Description: 
According to ranger recommendations, the following aspects were modified:
1.Cube ACL is removed since v2.2.0, we shuold modify the aclPermission name, no longer cube
access.
2.Remove unnecessary requests. For example, get cube and model access entities, it will be
recorded in the ranger audit log.
3.Remove unnecessary permission verification. Kylin currently used four permissions(ADMINISTRATION,MANAGEMENT,OPERATION,READ),
other permissions do not need to be verified. Every time permission verification will be recorded
in the ranger audit log.

> Change cube access to project access in ExternalAclProvider.java
> ----------------------------------------------------------------
>
>                 Key: KYLIN-3074
>                 URL: https://issues.apache.org/jira/browse/KYLIN-3074
>             Project: Kylin
>          Issue Type: Bug
>    Affects Versions: v2.2.0
>            Reporter: peng.jianhua
>            Assignee: peng.jianhua
>         Attachments: 0001-KYLIN-3074-branch-2.2.x.patch
>
>
> According to ranger recommendations, the following aspects were modified:
> 1.Cube ACL is removed since v2.2.0, we shuold modify the aclPermission name, no longer
cube access.
> 2.Remove unnecessary requests. For example, get cube and model access entities, it will
be recorded in the ranger audit log.
> 3.Remove unnecessary permission verification. Kylin currently used four permissions(ADMINISTRATION,MANAGEMENT,OPERATION,READ),
other permissions do not need to be verified. Every time permission verification will be recorded
in the ranger audit log.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message