Uploaded image for project: 'CDAP'
  1. CDAP
  2. CDAP-7026

Namespace creation should grant the impersonated user full access to the namespace

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 3.5.0
    • Fix Version/s: 3.5.0
    • Component/s: Namespaces, Security
    • Labels:
      None
    • Release Notes:
      Upon namespace creation, all privileges are granted to both - the user who created the namespace as well as the user that programs will run as in the namespace.
    • Rank:
      1|hzzjxr:

      Description

      Without this, when programs are run in the namespace, they will not have the required access to datasets created in the namespace.

      If impersonation parameters are provided, full access should be granted to the impersonated user. Otherwise to the 'cdap' user who will run the programs when impersonation parameters are not provided.

        Attachments

          Activity

            People

            • Assignee:
              bhooshan Bhooshan Mogal
              Reporter:
              bhooshan Bhooshan Mogal
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: