Build #772

Builds the CDAP Security Extensions

Build: #772 was successful Changes by 4 people

Code commits

CDAP Security Extensions

  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> 33b4fbee33900230fe995397d7c0c9206e6e8962

    Merge pull request #77 from caskdata/release/0.2
    Release -> Develop

  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> 643786e9212c74c7c67b52281f8be89769b63b77

    Merge pull request #76 from caskdata/fix/asterisk-support-required
    Sentry service *requires* support for * as an action, so bringing it …

  • Bhooshan Mogal

    Bhooshan Mogal 34ae68ca20a3687b058329a05519157973838ada

    Sentry service *requires* support for * as an action, so bringing it back

    • cdap-sentry/cdap-sentry-extension/README.rst (version 34ae68ca20a3687b058329a05519157973838ada)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/test/resources/test-authz-provider.ini (version 34ae68ca20a3687b058329a05519157973838ada)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-model/src/main/java/co/cask/cdap/security/authorization/sentry/model/ActionConstant.java (version 34ae68ca20a3687b058329a05519157973838ada)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-model/src/main/java/co/cask/cdap/security/authorization/sentry/model/ActionFactory.java (version 34ae68ca20a3687b058329a05519157973838ada)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-policy/src/test/java/co/cask/cdap/security/authorization/sentry/policy/TestPrivilegeValidator.java (version 34ae68ca20a3687b058329a05519157973838ada)
  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> 9d0444a87895a8fc658dd9058ac126f278b5e4d2

    Merge pull request #75 from caskdata/bugfix/fix-ss-list
    Fix the return type of ss list

  • Nishith Nand

    Nishith Nand 54d4691c3aa20893b291d5c27ed752e0db4f4662

    Fix the return type of ss list

    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/test/java/co/cask/cdap/security/authorization/sentry/binding/SentryAuthorizerTest.java (version 54d4691c3aa20893b291d5c27ed752e0db4f4662)
  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> 6c502be2fce8e035877b235c8845522f9c679ebf

    Merge pull request #74 from caskdata/fix/port-to-apache-tephra
    Switch to Apache Tephra

  • Gokul Gunasekaran

    Gokul Gunasekaran ac82378042937246d25721289b4c077d9ff51d13

    Switch to Apache Tephra

    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/test/java/co/cask/cdap/security/authorization/sentry/binding/SentryAuthorizerTest.java (version ac82378042937246d25721289b4c077d9ff51d13)
  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> b30721907faf4424b5ae6b377558027460d40ac5

    Remove deb/rpm profiles to prevent conflicts with CDAP (#71)

    • cdap-security-extensions-dist/pom.xml (version b30721907faf4424b5ae6b377558027460d40ac5)
  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> 0fcc6bdccf08879a75f183fba69f962d3cb682b8

    Merge pull request #73 from caskdata/bugfix_release/disable_dataset
    Disable dataset based authorization extension since it creates a circ…

  • Bhooshan Mogal

    Bhooshan Mogal 1f0031ce427c9f4cdd1d9fd9394387c2faff05d0

    Disable dataset based authorization extension since it creates a circular dependency. An entity on which authorization should be enforced (CDAP Dataset) shouldn't be the backend for authorization.

    • cdap-security-extensions-dist/pom.xml (version 1f0031ce427c9f4cdd1d9fd9394387c2faff05d0)
    • pom.xml (version 1f0031ce427c9f4cdd1d9fd9394387c2faff05d0)
  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> aac1b42b80357f8642f456e09e38da58914d095d

    Merge pull request #72 from caskdata/feature/remove-action-all
    Feature/remove action all

  • Bhooshan Mogal

    Bhooshan Mogal 033280fa2b39f0b6f332277b5fa996237a024dab

    (CDAP-6933) Removed usages of Action.ALL Hack disable ALL in the Sentry Extension. This backdoor is still allowed, because it is very close to the release, and making a sweeping change (may involve removing usages of BitFieldActionFactory etc) may be risky.

    • cdap-authorization-dataset-extn/src/main/java/co/cask/cdap/security/authorization/DatasetBasedAuthorizer.java (version 033280fa2b39f0b6f332277b5fa996237a024dab)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/main/java/co/cask/cdap/security/authorization/sentry/binding/AuthBinding.java (version 033280fa2b39f0b6f332277b5fa996237a024dab)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/test/java/co/cask/cdap/security/authorization/sentry/binding/SentryAuthorizerTest.java (version 033280fa2b39f0b6f332277b5fa996237a024dab)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/test/resources/test-authz-provider.ini (version 033280fa2b39f0b6f332277b5fa996237a024dab)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-model/src/main/java/co/cask/cdap/security/authorization/sentry/model/ActionConstant.java (version 033280fa2b39f0b6f332277b5fa996237a024dab)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-model/src/main/java/co/cask/cdap/security/authorization/sentry/model/ActionFactory.java (version 033280fa2b39f0b6f332277b5fa996237a024dab)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-policy/src/test/java/co/cask/cdap/security/authorization/sentry/policy/TestPrivilegeValidator.java (version 033280fa2b39f0b6f332277b5fa996237a024dab)
  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> a7920597b3d0b6c105bf3e56859b911ee35be3de

    Merge pull request #70 from caskdata/fix/log-level
    Reduced log verbosity

  • Bhooshan Mogal

    Bhooshan Mogal 892a942d0208575053feeee0142ba050557bcda6

    Reduced log verbosity

    • cdap-sentry/cdap-sentry-extension/README.rst (version 892a942d0208575053feeee0142ba050557bcda6)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/main/java/co/cask/cdap/security/authorization/sentry/binding/AuthBinding.java (version 892a942d0208575053feeee0142ba050557bcda6)
  • GitHub <noreply@github.com>

    GitHub <noreply@github.com> b909d456ab9225fcd66f78dcbedc2e82d4346f09

    Merge pull request #69 from caskdata/feature/remove-super-users
    (CDAP-6906) SentryAuthorizer now defaults admin group to cdap.

  • Bhooshan Mogal

    Bhooshan Mogal e3cb024b68245675967dab92bd97edd796e3db5d

    (CDAP-6906) SentryAuthorizer now defaults admin group to cdap.
    Removed the notion of superusers from cdap-sentry

    (CDAP-6926) Allow grants on users via CDAP for consistency.

    • cdap-sentry/cdap-sentry-extension/README.rst (version e3cb024b68245675967dab92bd97edd796e3db5d)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/main/java/co/cask/cdap/security/authorization/sentry/binding/AuthBinding.java (version e3cb024b68245675967dab92bd97edd796e3db5d)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/main/java/co/cask/cdap/security/authorization/sentry/binding/SentryAuthorizer.java (version e3cb024b68245675967dab92bd97edd796e3db5d)
    • cdap-sentry/cdap-sentry-extension/cdap-sentry-binding/src/test/java/co/cask/cdap/security/authorization/sentry/binding/SentryAuthorizerTest.java (version e3cb024b68245675967dab92bd97edd796e3db5d)