Configure a resource-based storage handler policy: HadoopSQL
How to configure a policy that allows authorized users to create data tables using storage-handlers.
Ranger includes “storage-type” and “storage-url” resources in HadoopSQL Service that support only the permission “RW Storage ” permission. Ranger authorizes a user that creates or alters a table against this resource policy. A user having the required “RW Storage” permission on the resource representing the storage-type and storage-url, is allowed to create/alter the table in the respective storage.
- Phoenix StoragerHandler policy:
- Storage Type: PhoenixStorageHandler
- Kafka StoragerHandler policy:
- Storage Type: kafka
- JDBC StorageHandler policy:
- Storage Type: jdbc:mysql