Details

    • Type: Sub-task
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 3.3.0
    • Component/s: Security
    • Labels:
      None
    • Release Notes:
      Added AuthorizationPlugin, for pluggable authorization.
    • Rank:
      1|hzz31r:

      Description

      To support authorization, we need to provide an interface that allows checking whether a user is allowed to perform a particular action on an entity. Once we have that, we can have an Apache Sentry implementation, and possibly an Apache Ranger implementation in the future.

      This work will also create a NoOpAuthorization implementation which will be the default. This option can be changed in cdap-security.xml.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                alvin Alvin Wang
                Reporter:
                alvin Alvin Wang
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: