Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Now Live: Explore expert insights and technical deep dives on the new Cloudera Community BlogsRead the Announcement
Solved Go to solution

Unable to create Ranger Hive row level filter Security policies via Ranger REST API

Labels:
avatar
author-rank Kende
Reader

Created ‎12-01-2020 10:58 AM

I am trying to create Ranger hive row-level filter policies using Rest API. I am truying to use this bellow Json format but it is creating just regular hive policy instead of row-level filter policy. Any clue on the best Jason format ?

 

curl -iv -u USERID:PASSWD -H "Content-Type: application/json" -X POST http://HOSTNAME001:6080/service/public/api/policy/ -d '{
"policyName": "RESTAPI_TEST",
"databases": "Test_databse",
"tables": "Test_table",
"columns": "*",
"udfs": "",
"description": "Hive Row Level Filter Policy",
"isEnabled": true,
"isAuditEnabled": true,
"rowFilterPolicyItems" : [ {
"rowFilterInfo" : {
"filterExpr" : "ROW_DVI = 02"
},
"delegateAdmin" : false,
"accesses" : [ {
"type" : "Select",
"isAllowed" : true
} ],
"users" : [ "USER_ID123" ]
}]}'

1,408 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank rguruvannagari author-rank
Super Collaborator

Created ‎12-04-2020 07:46 AM

Policy type is missing. By default policyType is 0 which is Access type. 

 

Try with below API. 

 

curl -u admin -H 'Content-Type: application/json' -H 'Accept: application/json' -X POST -d '
{"policyType":"2","name":"row_policy_1","isEnabled":true,"policyPriority":0,"policyLabels":[],"description":"","isAuditEnabled":true,"resources":{"database":{"values":["default"],"isRecursive":false,"isExcludes":false},"table":{"values":["test_table"],"isRecursive":false,"isExcludes":false}},"rowFilterPolicyItems":[{"users":["hr1"],"accesses":[{"type":"select","isAllowed":true}],"rowFilterInfo":{"filterExpr":"c1=true"}}],"service":"c116_hive"}' http://ranger-admin:6080/service/plugins/policies -v

View solution in original post

1,358 Views
0 Kudos
1 REPLY 1

avatar
author-rank rguruvannagari author-rank
Super Collaborator

Created ‎12-04-2020 07:46 AM

Policy type is missing. By default policyType is 0 which is Access type. 

 

Try with below API. 

 

curl -u admin -H 'Content-Type: application/json' -H 'Accept: application/json' -X POST -d '
{"policyType":"2","name":"row_policy_1","isEnabled":true,"policyPriority":0,"policyLabels":[],"description":"","isAuditEnabled":true,"resources":{"database":{"values":["default"],"isRecursive":false,"isExcludes":false},"table":{"values":["test_table"],"isRecursive":false,"isExcludes":false}},"rowFilterPolicyItems":[{"users":["hr1"],"accesses":[{"type":"select","isAllowed":true}],"rowFilterInfo":{"filterExpr":"c1=true"}}],"service":"c116_hive"}' http://ranger-admin:6080/service/plugins/policies -v
1,359 Views
0 Kudos
Announcements
Community Announcements
Announcing the Launch of Cloudera Community Blogs
Community Announcements
October / November 2025 Community Highlights
What's New @ Cloudera
Announcing Cloudera Streaming Analytics - Kubernetes Operato...
What's New @ Cloudera
Announcing Cloudera Streams Messaging - Kubernetes Operator ...
Community Announcements
Welcome to the Cloudera Community!
View More Announcements