Hortonworks Docs » Hortonworks Data Platform 3.1.4 » HDP 3.1.4 Release Notes
HDP 3.1.4 Release Notes
Also available as:
PDF

Ranger

This release provides Ranger 1.2.0 and the listed Apache patches.

  • RANGER-2521: Masking policies not picked from the zone of the accessed resource

  • RANGER-2513: Unable to delete user if he has references in new ref tables

  • RANGER-2511: default tag based service is getting created for the tag based service

  • RANGER-2509: Add validation message for Importing non JSON file on import action

  • RANGER-2481: Create a tag service when a resource service is created and link it to resource service, Parts 1 and 2.

  • RANGER-2496: Upgrade Spring Security version in Ranger

  • RANGER-2466: Improvement in setting cluster Name in RangerAccessRequest

  • RANGER-2479: Change test connection preferred SQL statement for Oracle DB Flavor

  • RANGER-2475: Replacing bootstrap accordion with jquery SlideToggle.

  • RANGER-2474:Policy version and details in access audits wrong when deny condition added to policy

  • RANGER-2473:Upgrade of Ranger Admin to the current version fails in PatchForAtlasResourceAndAccessTypeUpdate_J10016

  • RANGER-2468: Upgrade jQuery version in Ranger.

  • RANGER-2458: Cluster property name changes in Ranger Plugin code

  • RANGER-2465:Create a PolicyCondition to apply if all given tags are present for the accessed resource-addon-sampleTagDef

  • RANGER-2469: Adding absolute-ordering to web.xml to fix More than one fragment error during Ranger start

  • RANGER-2465:Create a PolicyCondition to apply if all given tags are present for the accessed resource

  • RANGER-2464: Upgrade spring, zookeeper, c3p0, jackson-databind, tomcat libraries

  • RANGER-2463:Ranger admin authorization audits fails intermittently to fetch from Solr

  • RANGER-2394: Add ability to search for multiple users, and exclude multiple users from audit logs

  • RANGER-2455: When service created inside a zone landing page that service gets created in unzonned landing page.

  • RANGER-2454: Remove the trailing slash in Ranger URL in RangerAdminJersey2RESTClient

  • RANGER-2451: fix for ClassCastException in RangerPolicyEngineImpl.convertFromSingleResource()

  • RANGER-2453: Tag data-masking policy should allow only one tag as resource

  • ANGER-2456R:Upgrade of Ranger Admin to the current version fails in PatchForKafkaServiceDefUpdate_J10025

  • RANGER-2437:Update grant/revoke error message to provide more information about the principal type

  • RANGER-2449: If service part of zone is not present then null pointer exception is thrown

  • RANGER-2420: Ranger spends 36% of CPU in ObjectMapper

  • RANGER-2445: Import of Tagservice for zone

  • RANGER-2446: Include security zone details as part of admin audit for policy update

  • RANGER-2435: The breadcrumb for Security zone name on policy creation/policy edit page should be stagnant.

  • RANGER-2421: add missing httpclient libraries to the atlas plugin

  • RANGER-2436: Custom condition: Access from cluster

  • RANGER-2434: Remove dependency from com.google.common.base.Objects

  • RANGER-2430 : Zoneadmin User is able to create policy for those services which is not associated to zone

  • RANGER-2439: Unable to view policy details from access audits when policy has policy condition at policy level

  • RANGER-2435: Add support for sticky breadcrumbs.

  • RANGER-2438: Legacy PublicAPI REST API to get all policies fails

  • RANGER-2417: Set Atlas Entity owner to RangerAccessResource ownerUser attribute for Atlas Ranger Plugin

  • RANGER-2427: Tag policies are not evaluated if no security zones are configured

  • RANGER-2423: Ranger KnoxSSO authentication in Ranger HA environment

HDP 3.1.0 provided Ranger 1.2.0 and the listed Apache patches:

  • RANGER-2292: Test case fix for RANGER-2276

  • RANGER-2244: Tomcat Security Vulnerability Alert. The version of the tomcat for ranger should upgrade to 7.0.91 or later.

  • RANGER-2288: Sqoop repository config missing 'Common Name for Certificate'

  • RANGER-2284: Unable to build image using docker

  • RANGER-2276: Email Address should be verified when Add New User in Ranger Admin

  • RANGER-2267: Add a icon to differentiate the status of the service

  • RANGER-2277: Kylin repository config missing 'Common Name for Certificate'

  • RANGER-2280: The emptyText of User Sync and Plugin Status should be reasonable

  • RANGER-2286: Ranger install may be prevented by leftover DB entry

  • RANGER-2283: User is getting total count of groups even if he is assigned to one group due to which pagination is breaking

  • RANGER-2279: Reduce the time spent changing passwords during Ranger Admin install

  • RANGER-2278: Unable to delete user if he has references in new ref tables

  • RANGER-2248: Sorting does not work in AbstractPredicateUtil.java

  • RANGER-2257: Add policyID to error message when click the Access log of Audit

  • RANGER-2258: Improve the policy list page to prompt users when the service is disabled

  • RANGER-2264: Kafka default policies for new resources are not showing up in UI when upgrade is done from older version

  • RANGER-2251: Need to provide options for making java heap size memory configurable in Ranger services

  • RANGER-2259: Need to provide appropriate permisssions for unix-auth files.

  • RANGER-2252: Permission Kafka Admin should not be part of Topic resource in Ranger Kafka resource definition

  • RANGER-2209: Added Ranger service definition for ABFS

  • RANGER-2220: minify JavaScript files during packaging

  • RANGER-2238: String comparison should not use '==' in ServiceUtil.java

  • RANGER-2249: Ranger Audit not flushed immediately to hdfs

  • RANGER-2235: Modify the login session detail page as a modal

  • RANGER-2241: Removed mds and sha1 generation

  • RANGER-2222: Apache RangerKafkaPlugin support to handle Kafka Cluster as a new resource

  • RANGER-2210: Ranger support for Apache Kafka 2.0.0

HDP 3.0.0 and HDP 3.0.1 provided Ranger 1.1.0 and the following Apache patches.

  • RANGER-1715: Enhance Ranger Hive Plugin to support authorization on Hive replication Tasks

  • RANGER-1715: Enhance Ranger Hive Plugin to support authorization on Hive replication Tasks - repladmin permission

  • RANGER-1841: Audit log record for 'use dbName' hive command contains large number of tags

  • RANGER-1828: Good coding practice-add additional headers in ranger

  • RANGER-1833: Update Ranger to use 0.8.1 Atlas version

  • RANGER-1825: BUG-89494 : Ranger Tagsync start is failing

  • RANGER-91119: Exclude jackson jaxrs library from ranger-admin packaging

  • RANGER-1886: TagSync updates for changes in Atlas API

  • RANGER-1886: TagSync updates for changes in Atlas API - Part 2

  • RANGER-1883: Part 2 - All tag sources and sinks should use the same kerberos identity and reuse it

  • RANGER-1897: TagSync should replace use of V1 Atlas APIs with V2 APIs for efficient tag-download from Atlas

  • RANGER-1895: Simplify Storm dependencies

  • RANGER-1797: Tomcat Security Vulnerability Alert. The version of the tomcat for ranger should upgrade to 7.0.82.

  • RANGER-1906: Simplify Atlas plugin dependency management

  • RANGER-1898: Simplify Knox plugin dependency management

  • RANGER-1893: Update HBase dependency to 1.2.6

  • RANGER-1922: Simplify HBase dependencies

  • RANGER-1926: Upgrade Storm dependency to 1.1.1

  • RANGER-1905: Fix assembly creation - it's a black magic. As ranger-plugins-audit doesn't exclude guava from hadoop common, an older guava is leaked into embeddedwebserver classpath, which somehow filtered out by the assembly plugin Fix the atlas plugin assembly, so the guava is actually coming from the 'atlas-plugin's dependency, and not from the ranger-plugins-audit's dependency. And revert "RANGER-1858:ranger-admin start fail when policymgr_http_enabled equal to false."

  • RANGER-1984: Hbase audit log records may not show all tags associated with accessed column

  • RANGER-1999: Ranger policy engine updates to support list-of-values in access reource

  • RANGER-2000: Policy effective dates to support time-bound and temporary authorization

  • RANGER-1987: Upgrade to Storm 1.2.0 in Ranger

  • RANGER-2019: Handle upgrade scenario to rename the old ATLAS service def and use the new service def

  • RANGER-2019: Handle upgrade scenario to rename the old ATLAS service def and use the new service def

  • RANGER-2027: Evaluate grantor's group membership in the plugin for grant/revoke request

  • RANGER-2026: Update Hbase plugin to handle default namespace

  • RANGER-2018: Upgrade to Spring 4

  • RANGER-1994: Tomcat Security Vulnerability Alert. The version of the tomcat for ranger should upgrade to 7.0.85.

  • RANGER-2035: fix handling of null implClass in servicedefs (Oracle returns null for stored empty strings)

  • RANGER-2043: Ranger KMS KeyProvider and HSM KeyProvider should have more debug logs

  • RANGER-2115: Atlas service def creation failing in Ranger manual installation

© 2012–2019, Hortonworks, Inc.
Document licensed under the Creative Commons Attribution ShareAlike 4.0 License.
Hortonworks.com | Documentation | Support | Community