Closed anumee closed 2 years ago
Wonder to know when will this Spark security module to support Spark 3.2
This task is of medium priority and we don't have ETA now, volunteers are welcome :)
@pan3793 ,can you please check this PR ? https://github.com/apache/submarine/pull/861, This is a rough PR, After your review i am willing to change this.
Thanks @RamakrishnaChilaka for working on this feature, but ranger spark module is deprecated since https://github.com/apache/submarine/pull/796, the test infrastructure become not runable in apache/submarine, would you please port this module to kyuubi firstly?
sure @pan3793 , Kindly, Please check whether the current code is valid for spark 3.2 ?
Please check whether the current code is valid for Spark 3.2?
We need CI to verify that.
Ok @pan3793, I am not aware of kyuubi code base.. can you please guide me in porting submarine spark security module into kyuubi ? I tried searching for spark security files in the codebase..
@RamakrishnaChilaka I've done almost same thing for our product. I don't have the right to open the code, but this is commit list I made:
cc @yaooqinn
thanks @minyk , your list was truly helpful, I didn't knew about SPARK-34989
, I have incorporated it, one small change to your list is UnCacheTableCommand
is renamed to UnCacheTable
.
You can find code here
Please note that, I have taken the code from submarine project.. But I couldn't find the code of spark-security inside Kyuubi.
The spark security module currently contains 4 main features, including authorization, data masking, row-level filtering, and DCL(incomplete).
It contains a lot of legacy code for very old spark releases including spark 2.0, so I suggest we add them step by step starting with authorization.
@yaooqinn will [WIP] [KYUUBI #1451] Introduce Kyuubi Spark Authz Module #2160 support ranger1.2 ?
@yaooqinn will [WIP] [KYUUBI #1451] Introduce Kyuubi Spark Authz Module #2160 support ranger1.2 ?
I don't know
Code of Conduct
Search before asking
Describe the feature
Spark security module was retired from submarine pull- 796 and it is still missing here. This is needed with Spark 3.2 support.
Motivation
Spark 3.2 support
Describe the solution
Additional context
No response
Are you willing to submit PR?