Ranger
This release provides Ranger 1.1.0 and the same list of patches listed for HDP 3.0.0.
HDP 3.0.0 provided Ranger 1.1.0 and the following Apache patches:
-
RANGER-2201: Fix to log no ranger audits when entityId value is not null or empty string
-
RANGER-2195: TagPolicy not working due to failure to update tag policy version --BUG-109598
-
RANGER-2188: Support multiple threads to build Trie and on-lookup post-setup for Trie nodes - set default to lazy post-setup
-
RANGER-2167: Upgrade to Apache parent pom version 20
-
RANGER-2191: Update ranger-tool with new options to control Trie
-
RANGER-2186: Increment service-specific policy and tag versions after update transaction is committed
-
RANGER-2189: default policy for Atlas service should allow relationship-type access to all
-
RANGER-2114: Internal Exception: com.mysql.jdbc.MysqlDataTruncation: Data truncation: Data too long for
-
RANGER-2138: Internal Exception: com.mysql.jdbc.MysqlDataTruncation: Data truncation: Data too long for
-
RANGER-2177: Handle validations for duplicate configuration item during service create/edit
-
RANGER-2162: Upgrade c3p0 libraries
-
RANGER-2168: dd service admin user through service config
-
RANGER-2169: Create unique index on service and name column of x_policy tablet
-
RANGER-2153: Supply the function of reverting policy history version.
-
RANGER-2184: Update RangerAtlas authorization to authorize add/update/remove of relationships
-
RANGER-2180: Handle token replacement correctly when token is not defined in the request context
-
RANGER-2177: Handle validations for duplicate configuration item during service create/edit
-
RANGER-2152: Incorrect debugging information in RangerPluginClassLoader.java
-
RANGER-2150: Unit test coverage for XUserMgr and UserMgr class
-
RANGER-2158: Performance improvement to REST API call to update policy
HDP 3.0.0 provided Ranger 1.1.0 and the following Apache patches:
-
RANGER-1715: Enhance Ranger Hive Plugin to support authorization on Hive replication Tasks
-
RANGER-1715: Enhance Ranger Hive Plugin to support authorization on Hive replication Tasks - repladmin permission
-
RANGER-1841: Audit log record for 'use dbName' hive command contains large number of tags
-
RANGER-1828: Good coding practice-add additional headers in ranger
-
RANGER-1833: Update Ranger to use 0.8.1 Atlas version
-
RANGER-1825: BUG-89494 : Ranger Tagsync start is failing
-
RANGER-1886: TagSync updates for changes in Atlas API
-
RANGER-1886: TagSync updates for changes in Atlas API - Part 2
-
RANGER-1883: Part 2 - All tag sources and sinks should use the same kerberos identity and reuse it
-
RANGER-1897: TagSync should replace use of V1 Atlas APIs with V2 APIs for efficient tag-download from Atlas
-
RANGER-1895: Simplify Storm dependencies
-
RANGER-1797: Tomcat Security Vulnerability Alert. The version of the tomcat for ranger should upgrade to 7.0.82.
-
RANGER-1906: Simplify Atlas plugin dependency management
-
RANGER-1898: Simplify Knox plugin dependency management
-
RANGER-1893: Update HBase dependency to 1.2.6
-
RANGER-1922: Simplify HBase dependencies
-
RANGER-1926: Upgrade Storm dependency to 1.1.1
-
RANGER-1905: Fix assembly creation - it's a black magic. As ranger-plugins-audit doesn't exclude guava from hadoop common, an older guava is leaked into embeddedwebserver classpath, which somehow filtered out by the assembly plugin Fix the atlas plugin assembly, so the guava is actually coming from the 'atlas-plugin's dependency, and not from the ranger-plugins-audit's dependency. And revert "RANGER-1858:ranger-admin start fail when policymgr_http_enabled equal to false."
-
RANGER-1984: Hbase audit log records may not show all tags associated with accessed column
-
RANGER-1999: Ranger policy engine updates to support list-of-values in access reource
-
RANGER-2000: Policy effective dates to support time-bound and temporary authorization
-
RANGER-1987: Upgrade to Storm 1.2.0 in Ranger
-
RANGER-2019: Handle upgrade scenario to rename the old ATLAS service def and use the new service def
-
RANGER-2019: Handle upgrade scenario to rename the old ATLAS service def and use the new service def
-
RANGER-2027: Evaluate grantor's group membership in the plugin for grant/revoke request
-
RANGER-2026: Update Hbase plugin to handle default namespace
-
RANGER-2018: Upgrade to Spring 4
-
RANGER-1994: Tomcat Security Vulnerability Alert. The version of the tomcat for ranger should upgrade to 7.0.85.
-
RANGER-2035: fix handling of null implClass in servicedefs (Oracle returns null for stored empty strings)
-
RANGER-2043: Ranger KMS KeyProvider and HSM KeyProvider should have more debug logs
-
RANGER-2115: Atlas service def creation failing in Ranger manual installation