o

org.apache.kyuubi.plugin.spark.authz.ranger

SparkRangerAdminPlugin

object SparkRangerAdminPlugin extends RangerBasePlugin with RangerConfigProvider

Linear Supertypes
RangerConfigProvider, RangerBasePlugin, AnyRef, Any
Ordering
  1. Alphabetic
  2. By Inheritance
Inherited
  1. SparkRangerAdminPlugin
  2. RangerConfigProvider
  3. RangerBasePlugin
  4. AnyRef
  5. Any
  1. Hide All
  2. Show All
Visibility
  1. Public
  2. All

Value Members

  1. final def !=(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  2. final def ##(): Int
    Definition Classes
    AnyRef → Any
  3. final def ==(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  4. final def asInstanceOf[T0]: T0
    Definition Classes
    Any
  5. def authorizeInSingleCall: Boolean

    For a Spark SQL query, it may contain 0 or more privilege objects to verify, e.g.

    For a Spark SQL query, it may contain 0 or more privilege objects to verify, e.g. a typical JOIN operator may have two tables and their columns to verify.

    This configuration controls whether to verify the privilege objects in single call or to verify them one by one.

  6. def cleanup(): Unit
    Definition Classes
    RangerBasePlugin
  7. def clone(): AnyRef
    Attributes
    protected[lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( ... ) @native()
  8. def createRangerAuthContext(): RangerAuthContext
    Definition Classes
    RangerBasePlugin
  9. def createRole(arg0: RangerRole, arg1: RangerAccessResultProcessor): RangerRole
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  10. def dropRole(arg0: String, arg1: String, arg2: RangerAccessResultProcessor): Unit
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  11. final def eq(arg0: AnyRef): Boolean
    Definition Classes
    AnyRef
  12. def equals(arg0: Any): Boolean
    Definition Classes
    AnyRef → Any
  13. def evalAuditPolicies(arg0: RangerAccessResult): Unit
    Definition Classes
    RangerBasePlugin
  14. def evalDataMaskPolicies(arg0: RangerAccessRequest, arg1: RangerAccessResultProcessor): RangerAccessResult
    Definition Classes
    RangerBasePlugin
  15. def evalRowFilterPolicies(arg0: RangerAccessRequest, arg1: RangerAccessResultProcessor): RangerAccessResult
    Definition Classes
    RangerBasePlugin
  16. def finalize(): Unit
    Attributes
    protected[lang]
    Definition Classes
    AnyRef
    Annotations
    @throws( classOf[java.lang.Throwable] )
  17. def getAllRoles(arg0: String, arg1: RangerAccessResultProcessor): List[String]
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  18. def getAppId(): String
    Definition Classes
    RangerBasePlugin
  19. def getAuditProviderFactory(): AuditProviderFactory
    Definition Classes
    RangerBasePlugin
  20. def getChainedPlugins(): List[RangerChainedPlugin]
    Definition Classes
    RangerBasePlugin
  21. final def getClass(): Class[_]
    Definition Classes
    AnyRef → Any
    Annotations
    @native()
  22. def getClusterName(): String
    Definition Classes
    RangerBasePlugin
  23. def getConfig(): RangerPluginConfig
    Definition Classes
    RangerBasePlugin
  24. def getCurrentRangerAuthContext(): RangerAuthContext
    Definition Classes
    RangerBasePlugin
  25. def getFilterExpr(req: AccessRequest): Option[String]
  26. def getMaskingExpr(req: AccessRequest): Option[String]
  27. def getPluginContext(): RangerPluginContext
    Definition Classes
    RangerBasePlugin
  28. def getPoliciesVersion(): Long
    Definition Classes
    RangerBasePlugin
  29. val getRangerConf: Configuration

    Get plugin config of different Ranger versions

    Get plugin config of different Ranger versions

    returns

    instance of org.apache.ranger.authorization.hadoop.config.RangerPluginConfig for Ranger 2.1 and above, or instance of org.apache.ranger.authorization.hadoop.config.RangerConfiguration for Ranger 2.0 and below

    Definition Classes
    RangerConfigProvider
  30. def getRangerRoleForPrincipal(arg0: String, arg1: String): Set[RangerRole]
    Definition Classes
    RangerBasePlugin
  31. def getRangerRoles(): RangerRoles
    Definition Classes
    RangerBasePlugin
  32. def getResourceACLs(arg0: RangerAccessRequest, arg1: Integer): RangerResourceACLs
    Definition Classes
    RangerBasePlugin
  33. def getResourceACLs(arg0: RangerAccessRequest): RangerResourceACLs
    Definition Classes
    RangerBasePlugin
  34. def getResourceAccessInfo(arg0: RangerAccessRequest): RangerResourceAccessInfo
    Definition Classes
    RangerBasePlugin
  35. def getResultProcessor(): RangerAccessResultProcessor
    Definition Classes
    RangerBasePlugin
  36. def getRole(arg0: String, arg1: String, arg2: RangerAccessResultProcessor): RangerRole
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  37. def getRoles(): RangerRoles
    Definition Classes
    RangerBasePlugin
  38. def getRolesFromUserAndGroups(arg0: String, arg1: Set[String]): Set[String]
    Definition Classes
    RangerBasePlugin
  39. def getRolesVersion(): Long
    Definition Classes
    RangerBasePlugin
  40. def getServiceDef(): RangerServiceDef
    Definition Classes
    RangerBasePlugin
  41. def getServiceDefId(): Int
    Definition Classes
    RangerBasePlugin
  42. def getServiceName(): String
    Definition Classes
    RangerBasePlugin
  43. def getServiceType(): String
    Definition Classes
    RangerBasePlugin
  44. def getTagEnricher(): RangerTagEnricher
    Definition Classes
    RangerBasePlugin
  45. def getTagsVersion(): Long
    Definition Classes
    RangerBasePlugin
  46. def getUserRoles(arg0: String, arg1: RangerAccessResultProcessor): List[String]
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  47. def getUserStoreEnricher(): RangerUserStoreEnricher
    Definition Classes
    RangerBasePlugin
  48. def getUserStoreVersion(): Long
    Definition Classes
    RangerBasePlugin
  49. def grantAccess(arg0: GrantRevokeRequest, arg1: RangerAccessResultProcessor): Unit
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  50. def grantRole(arg0: GrantRevokeRoleRequest, arg1: RangerAccessResultProcessor): Unit
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  51. def hashCode(): Int
    Definition Classes
    AnyRef → Any
    Annotations
    @native()
  52. def init(): Unit
    Definition Classes
    RangerBasePlugin
  53. def initialize(): Unit

    plugin initialization with cleanup shutdown hook registered

  54. def isAccessAllowed(arg0: Collection[RangerAccessRequest], arg1: RangerAccessResultProcessor): Collection[RangerAccessResult]
    Definition Classes
    RangerBasePlugin
  55. def isAccessAllowed(arg0: RangerAccessRequest, arg1: RangerAccessResultProcessor): RangerAccessResult
    Definition Classes
    RangerBasePlugin
  56. def isAccessAllowed(arg0: Collection[RangerAccessRequest]): Collection[RangerAccessResult]
    Definition Classes
    RangerBasePlugin
  57. def isAccessAllowed(arg0: RangerAccessRequest): RangerAccessResult
    Definition Classes
    RangerBasePlugin
  58. final def isInstanceOf[T0]: Boolean
    Definition Classes
    Any
  59. def isServiceAdmin(arg0: String): Boolean
    Definition Classes
    RangerBasePlugin
  60. def logErrorMessage(arg0: String): Boolean
    Definition Classes
    RangerBasePlugin
  61. final def ne(arg0: AnyRef): Boolean
    Definition Classes
    AnyRef
  62. final def notify(): Unit
    Definition Classes
    AnyRef
    Annotations
    @native()
  63. final def notifyAll(): Unit
    Definition Classes
    AnyRef
    Annotations
    @native()
  64. def refreshPoliciesAndTags(): Unit
    Definition Classes
    RangerBasePlugin
  65. def registerAuthContextEventListener(arg0: RangerAuthContextListener): Unit
    Definition Classes
    RangerBasePlugin
  66. def revokeAccess(arg0: GrantRevokeRequest, arg1: RangerAccessResultProcessor): Unit
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  67. def revokeRole(arg0: GrantRevokeRoleRequest, arg1: RangerAccessResultProcessor): Unit
    Definition Classes
    RangerBasePlugin
    Annotations
    @throws( classOf[java.lang.Exception] )
  68. def setAuditExcludedUsersGroupsRoles(arg0: Set[String], arg1: Set[String], arg2: Set[String]): Unit
    Definition Classes
    RangerBasePlugin
  69. def setIsFallbackSupported(arg0: Boolean): Unit
    Definition Classes
    RangerBasePlugin
  70. def setPolicies(arg0: ServicePolicies): Unit
    Definition Classes
    RangerBasePlugin
  71. def setResultProcessor(arg0: RangerAccessResultProcessor): Unit
    Definition Classes
    RangerBasePlugin
  72. def setRoles(arg0: RangerRoles): Unit
    Definition Classes
    RangerBasePlugin
  73. def setServiceAdmins(arg0: Set[String]): Unit
    Definition Classes
    RangerBasePlugin
  74. def setSuperUsersAndGroups(arg0: Set[String], arg1: Set[String]): Unit
    Definition Classes
    RangerBasePlugin
  75. final def synchronized[T0](arg0: ⇒ T0): T0
    Definition Classes
    AnyRef
  76. def toString(): String
    Definition Classes
    AnyRef → Any
  77. def useUserGroupsFromUserStoreEnabled: Boolean

    This configuration controls whether to override user's usergroups by the mapping fetched from Ranger's UserStore.

    This configuration controls whether to override user's usergroups by the mapping fetched from Ranger's UserStore.

    It relies on Ranger's UserStore is a feature supported since Ranger 2.1.

    If true, user bound usergroups will be looked up in in Ranger's UserStore and the usergroups of AccessRequest is overriden.

    Please make sure configs in Ranger set properly: 1. set ranger.plugin.spark.enable.implicit.userstore.enricher to true 2. set cache path for UserStore in ranger.plugin.hive.policy.cache.dir 3. at least one condition of policies containing scripts, e.g. {{USER.attr}} in row-filter

  78. def verify(requests: Seq[RangerAccessRequest], auditHandler: SparkRangerAuditHandler): Unit

    batch verifying RangerAccessRequests and throws exception with all disallowed privileges for accessType and resources

  79. final def wait(): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  80. final def wait(arg0: Long, arg1: Int): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws( ... )
  81. final def wait(arg0: Long): Unit
    Definition Classes
    AnyRef
    Annotations
    @throws( ... ) @native()

Inherited from RangerConfigProvider

Inherited from RangerBasePlugin

Inherited from AnyRef

Inherited from Any

Ungrouped