Return-Path: X-Original-To: apmail-sentry-commits-archive@minotaur.apache.org Delivered-To: apmail-sentry-commits-archive@minotaur.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 4AFFC11E5A for ; Thu, 11 Sep 2014 01:49:56 +0000 (UTC) Received: (qmail 46183 invoked by uid 500); 11 Sep 2014 01:49:55 -0000 Delivered-To: apmail-sentry-commits-archive@sentry.apache.org Received: (qmail 46136 invoked by uid 500); 11 Sep 2014 01:49:55 -0000 Mailing-List: contact commits-help@sentry.incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@sentry.incubator.apache.org Delivered-To: mailing list commits@sentry.incubator.apache.org Received: (qmail 46127 invoked by uid 99); 11 Sep 2014 01:49:55 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 11 Sep 2014 01:49:55 +0000 X-ASF-Spam-Status: No, hits=-2001.7 required=5.0 tests=ALL_TRUSTED,RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.3] (HELO mail.apache.org) (140.211.11.3) by apache.org (qpsmtpd/0.29) with SMTP; Thu, 11 Sep 2014 01:49:54 +0000 Received: (qmail 46087 invoked by uid 99); 11 Sep 2014 01:49:34 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 11 Sep 2014 01:49:34 +0000 Date: Thu, 11 Sep 2014 01:49:34 +0000 (UTC) From: "Prasad Mujumdar (JIRA)" To: commits@sentry.incubator.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Commented] (SENTRY-359) Support Sentry service API to retrieve applicable privileges for a given authorizable object MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/SENTRY-359?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14129501#comment-14129501 ] Prasad Mujumdar commented on SENTRY-359: ---------------------------------------- [~asuresh] and [~romainr], thanks for the feedback. We can certainly add the as well. Unless I hear otherwise, the semantics will be to include the roles from group as well as the specified role set. You can leave any one of those empty. Will update the patch soon. Thanks! > Support Sentry service API to retrieve applicable privileges for a given authorizable object > -------------------------------------------------------------------------------------------- > > Key: SENTRY-359 > URL: https://issues.apache.org/jira/browse/SENTRY-359 > Project: Sentry > Issue Type: Improvement > Affects Versions: 1.4.0 > Reporter: Prasad Mujumdar > Assignee: Prasad Mujumdar > Attachments: SENTRY-359-noThrift.1.patch, SENTRY-359-noThrift.2.patch, SENTRY-359.1.patch, SENTRY-359.2.patch > > > The current implementation of list_sentry_privileges_for_provider is specifically to facilitate Sentry auth engine. It's not intended to be a general purpose metadata query. > We should add a new API that returns the list of privileges (TSentryPrivilege) for the give authorizable object and all it's applicable privileges. -- This message was sent by Atlassian JIRA (v6.3.4#6332)