Examples with PolicyACLSummary org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary used on opensource projects

Search in sources :

Example 1 with PolicyACLSummary

use of org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary in project ranger by apache.

the class RangerPolicyEngineImpl method updateRowFiltersFromPolicy.

private void updateRowFiltersFromPolicy(RangerPolicyEvaluator evaluator, Set<Long> policyIdForTemporalTags, RangerResourceACLs resourceACLs) {
    PolicyACLSummary aclSummary = evaluator.getPolicyACLSummary();
    if (aclSummary != null) {
        boolean isConditional = policyIdForTemporalTags.contains(evaluator.getId()) || evaluator.getValidityScheduleEvaluatorsCount() != 0;
        for (RowFilterResult rowFilterResult : aclSummary.getRowFilters()) {
            rowFilterResult = copyRowFilter(rowFilterResult);
            if (isConditional) {
                rowFilterResult.setIsConditional(true);
            }
            resourceACLs.getRowFilters().add(rowFilterResult);
        }
    }
}
Also used : PolicyACLSummary(org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary) RowFilterResult(org.apache.ranger.plugin.policyengine.RangerResourceACLs.RowFilterResult)

Example 2 with PolicyACLSummary

use of org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary in project ranger by apache.

the class RangerPolicyEngineImpl method updateFromPolicyACLs.

private void updateFromPolicyACLs(RangerPolicyEvaluator evaluator, Set<Long> policyIdForTemporalTags, RangerResourceACLs resourceACLs) {
    PolicyACLSummary aclSummary = evaluator.getPolicyACLSummary();
    if (aclSummary == null) {
        return;
    }
    boolean isConditional = policyIdForTemporalTags.contains(evaluator.getId()) || evaluator.getValidityScheduleEvaluatorsCount() != 0;
    for (Map.Entry<String, Map<String, PolicyACLSummary.AccessResult>> userAccessInfo : aclSummary.getUsersAccessInfo().entrySet()) {
        final String userName = userAccessInfo.getKey();
        for (Map.Entry<String, PolicyACLSummary.AccessResult> accessInfo : userAccessInfo.getValue().entrySet()) {
            Integer accessResult;
            if (isConditional) {
                accessResult = ACCESS_CONDITIONAL;
            } else {
                accessResult = accessInfo.getValue().getResult();
                if (accessResult.equals(RangerPolicyEvaluator.ACCESS_UNDETERMINED)) {
                    accessResult = RangerPolicyEvaluator.ACCESS_DENIED;
                }
            }
            RangerPolicy policy = evaluator.getPolicy();
            resourceACLs.setUserAccessInfo(userName, accessInfo.getKey(), accessResult, policy);
        }
    }
    for (Map.Entry<String, Map<String, PolicyACLSummary.AccessResult>> groupAccessInfo : aclSummary.getGroupsAccessInfo().entrySet()) {
        final String groupName = groupAccessInfo.getKey();
        for (Map.Entry<String, PolicyACLSummary.AccessResult> accessInfo : groupAccessInfo.getValue().entrySet()) {
            Integer accessResult;
            if (isConditional) {
                accessResult = ACCESS_CONDITIONAL;
            } else {
                accessResult = accessInfo.getValue().getResult();
                if (accessResult.equals(RangerPolicyEvaluator.ACCESS_UNDETERMINED)) {
                    accessResult = RangerPolicyEvaluator.ACCESS_DENIED;
                }
            }
            RangerPolicy policy = evaluator.getPolicy();
            resourceACLs.setGroupAccessInfo(groupName, accessInfo.getKey(), accessResult, policy);
        }
    }
    for (Map.Entry<String, Map<String, PolicyACLSummary.AccessResult>> roleAccessInfo : aclSummary.getRolesAccessInfo().entrySet()) {
        final String roleName = roleAccessInfo.getKey();
        for (Map.Entry<String, PolicyACLSummary.AccessResult> accessInfo : roleAccessInfo.getValue().entrySet()) {
            Integer accessResult;
            if (isConditional) {
                accessResult = ACCESS_CONDITIONAL;
            } else {
                accessResult = accessInfo.getValue().getResult();
                if (accessResult.equals(RangerPolicyEvaluator.ACCESS_UNDETERMINED)) {
                    accessResult = RangerPolicyEvaluator.ACCESS_DENIED;
                }
            }
            RangerPolicy policy = evaluator.getPolicy();
            resourceACLs.setRoleAccessInfo(roleName, accessInfo.getKey(), accessResult, policy);
        }
    }
}
Also used : RangerPolicy(org.apache.ranger.plugin.model.RangerPolicy) PolicyACLSummary(org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary) HashMap(java.util.HashMap) Map(java.util.Map)

Example 3 with PolicyACLSummary

use of org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary in project ranger by apache.

the class RangerPolicyEngineImpl method updateDataMasksFromPolicy.

private void updateDataMasksFromPolicy(RangerPolicyEvaluator evaluator, Set<Long> policyIdForTemporalTags, RangerResourceACLs resourceACLs) {
    PolicyACLSummary aclSummary = evaluator.getPolicyACLSummary();
    if (aclSummary != null) {
        boolean isConditional = policyIdForTemporalTags.contains(evaluator.getId()) || evaluator.getValidityScheduleEvaluatorsCount() != 0;
        for (DataMaskResult dataMaskResult : aclSummary.getDataMasks()) {
            dataMaskResult = copyDataMask(dataMaskResult);
            if (isConditional) {
                dataMaskResult.setIsConditional(true);
            }
            resourceACLs.getDataMasks().add(dataMaskResult);
        }
    }
}
Also used : PolicyACLSummary(org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary) DataMaskResult(org.apache.ranger.plugin.policyengine.RangerResourceACLs.DataMaskResult)

Aggregations

PolicyACLSummary (org.apache.ranger.plugin.policyevaluator.RangerPolicyEvaluator.PolicyACLSummary)3 HashMap (java.util.HashMap)1 Map (java.util.Map)1 RangerPolicy (org.apache.ranger.plugin.model.RangerPolicy)1 DataMaskResult (org.apache.ranger.plugin.policyengine.RangerResourceACLs.DataMaskResult)1 RowFilterResult (org.apache.ranger.plugin.policyengine.RangerResourceACLs.RowFilterResult)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial