[HBASE-12831] Changing the set of vis labels a user has access to doesn't generate an audit log event - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.0.0, 0.98.6, 2.0.0
Fix Version/s: 1.0.0, 0.98.10, 1.1.0
Component/s: None
Labels:
- audit

Release Note:

Hide
Auditing of visibility label administration.

Administrative actions on visibility labels, such as creation of a label or changing the set of labels a user or group may access, are now sent to the audit log. The audit messages should be similar to those already tracked by the access controller.

Show
Auditing of visibility label administration. Administrative actions on visibility labels, such as creation of a label or changing the set of labels a user or group may access, are now sent to the audit log. The audit messages should be similar to those already tracked by the access controller.

Description

Right now, the AccessController makes sure that (when users care about audit events) we generate an audit log event for any access change, like granting or removing a permission from a user.

When the set of labels a user has access to is altered, it gets handled by the VisibilityLabelService and we don't log anything to the audit log.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HBASE-12831.patch
12/Jan/15 12:33
7 kB
Ashish Singhi
HBASE-12831-v2.patch
13/Jan/15 09:04
12 kB
Ashish Singhi
HBASE-12831-v3.patch
13/Jan/15 10:20
12 kB
Ashish Singhi
HBASE-12831v4.patch
14/Jan/15 04:02
12 kB
Ashish Singhi
HBASE-12831-v5.patch
16/Jan/15 03:17
12 kB
Ashish Singhi
HBASE-12831-v6.patch
23/Jan/15 22:50
12 kB
Sean Busbey

Activity

People

Assignee:: Ashish Singhi

Reporter:: Sean Busbey

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Dates

Created:: 09/Jan/15 17:43

Updated:: 06/Apr/18 17:54

Resolved:: 29/Jan/15 18:02