ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ramesh Mani (JIRA)" <j...@apache.org>
Subject [jira] [Comment Edited] (RANGER-2209) Service Definition for ABFS to support Ranger Authorization
Date Wed, 05 Sep 2018 23:09:00 GMT

    [ https://issues.apache.org/jira/browse/RANGER-2209?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16605044#comment-16605044
] 

Ramesh Mani edited comment on RANGER-2209 at 9/5/18 11:08 PM:
--------------------------------------------------------------

[~kowon2008] I looked into the ABFS Service definition in JSON and I see the READ / WRITE
are the only permission.

Looking into the document from Microsoft I see there are lot may fine-grained operations are
done. Could they all be a permission or does it fall under READ / WRITE categories?

[https://docs.microsoft.com/en-us/azure/storage/blobs/storage-manage-access-to-resources#features-available-to-anonymous-users]

Could you please elaborate on how the authorization would work in case of READ and WRITE permission
on  STORAGE ACCOUNT / CONTAINER / RELATIVE PATH level access. Maybe documentation on this
for each leave read and write operation would help us in understanding and defining this better?


was (Author: rmani):
[~kowon2008] I looked into the ABFS definition in JSON and I see the READ / WRITE are the
only permission.

Looking into the document from Microsoft I see there are lot may fine-grained operations are
done. Could they all be a permission or does it fall under READ / WRITE categories?

https://docs.microsoft.com/en-us/azure/storage/blobs/storage-manage-access-to-resources#features-available-to-anonymous-users

Could you please elaborate on how the authorization would work in case of READ and WRITE permission
on  STORAGE ACCOUNT / CONTAINER / RELATIVE PATH level access. Maybe documentation on this
for each leave read and write operation would help us in understanding and defining this better?

> Service Definition for ABFS to support Ranger Authorization
> -----------------------------------------------------------
>
>                 Key: RANGER-2209
>                 URL: https://issues.apache.org/jira/browse/RANGER-2209
>             Project: Ranger
>          Issue Type: New Feature
>          Components: Ranger
>            Reporter: Yuan
>            Priority: Major
>
> This is to add Service Definition for Azure Blob File System (ABFS) in Ranger Authorization.
This will give an option to add ABFS as a Service in the Ranger.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message