Example 16 with RangerDefaultAuditHandler
use of org.apache.ranger.plugin.audit.RangerDefaultAuditHandler in project ranger by apache.
the class TestPolicyEngine method runTests.
private void runTests(InputStreamReader reader, String testName) {
try {
PolicyEngineTestCase testCase = gsonBuilder.fromJson(reader, PolicyEngineTestCase.class);
assertTrue("invalid input: " + testName, testCase != null && testCase.serviceDef != null && testCase.policies != null && testCase.tests != null);
ServicePolicies servicePolicies = new ServicePolicies();
servicePolicies.setServiceName(testCase.serviceName);
servicePolicies.setServiceDef(testCase.serviceDef);
servicePolicies.setPolicies(testCase.policies);
RangerPolicyEngineOptions policyEngineOptions = new RangerPolicyEngineOptions();
RangerPolicyEngine policyEngine = new RangerPolicyEngineImpl(testName, servicePolicies, policyEngineOptions);
RangerAccessResultProcessor auditHandler = new RangerDefaultAuditHandler();
for (TestData test : testCase.tests) {
RangerAccessResult expected = test.result;
RangerAccessRequest request = test.request;
policyEngine.preProcess(request);
RangerAccessResult result = policyEngine.evaluatePolicies(request, RangerPolicy.POLICY_TYPE_ACCESS, auditHandler);
assertNotNull("result was null! - " + test.name, result);
assertEquals("isAllowed mismatched! - " + test.name, expected.getIsAllowed(), result.getIsAllowed());
assertEquals("isAudited mismatched! - " + test.name, expected.getIsAudited(), result.getIsAudited());
assertEquals("policyId mismatched! - " + test.name, expected.getPolicyId(), result.getPolicyId());
}
} catch (Throwable excp) {
excp.printStackTrace();
}
}
Also used :
RangerPolicyEngineImpl(org.apache.ranger.plugin.policyengine.RangerPolicyEngineImpl)
RangerAccessResultProcessor(org.apache.ranger.plugin.policyengine.RangerAccessResultProcessor)
ServicePolicies(org.apache.ranger.plugin.util.ServicePolicies)
TestData(org.apache.ranger.authorization.hbase.TestPolicyEngine.PolicyEngineTestCase.TestData)
RangerAccessResult(org.apache.ranger.plugin.policyengine.RangerAccessResult)
RangerPolicyEngine(org.apache.ranger.plugin.policyengine.RangerPolicyEngine)
RangerDefaultAuditHandler(org.apache.ranger.plugin.audit.RangerDefaultAuditHandler)
RangerAccessRequest(org.apache.ranger.plugin.policyengine.RangerAccessRequest)
RangerPolicyEngineOptions(org.apache.ranger.plugin.policyengine.RangerPolicyEngineOptions)
Aggregations
RangerDefaultAuditHandler (org.apache.ranger.plugin.audit.RangerDefaultAuditHandler)16
AccessDeniedException (org.apache.hadoop.hbase.security.AccessDeniedException)4
RangerAccessResultProcessor (org.apache.ranger.plugin.policyengine.RangerAccessResultProcessor)3
RangerBasePlugin (org.apache.ranger.plugin.service.RangerBasePlugin)3
IOException (java.io.IOException)2
CoprocessorException (org.apache.hadoop.hbase.coprocessor.CoprocessorException)2
AccessControlProtos (org.apache.hadoop.hbase.protobuf.generated.AccessControlProtos)2
AccessControlException (org.apache.hadoop.security.AccessControlException)2
GrantRevokeRequest (org.apache.ranger.plugin.util.GrantRevokeRequest)2
RangerPerfTracer (org.apache.ranger.plugin.util.RangerPerfTracer)2
ServicePolicies (org.apache.ranger.plugin.util.ServicePolicies)2
JsonParseException (com.google.gson.JsonParseException)1
TypeToken (com.google.gson.reflect.TypeToken)1
Type (java.lang.reflect.Type)1
Set (java.util.Set)1
Subject (javax.security.auth.Subject)1
Configuration (org.apache.hadoop.conf.Configuration)1
UserGroupInformation (org.apache.hadoop.security.UserGroupInformation)1
ListenerName (org.apache.kafka.common.network.ListenerName)1
JaasContext (org.apache.kafka.common.security.JaasContext)1
