[
https://issues.apache.org/jira/browse/NIFI-4925?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16386736#comment-16386736
]
ASF GitHub Bot commented on NIFI-4925:
--------------------------------------
Github user markap14 commented on the issue:
https://github.com/apache/nifi/pull/2511
@mcgilman this looks good. Was able to read through the code and I think it
does what is expected. Was able to verify that the issue no longer exists. +1
merged to master. Thanks!
> Ranger Authorizer - Memory Leak
> -------------------------------
>
> Key: NIFI-4925
> URL: https://issues.apache.org/jira/browse/NIFI-4925
> Project: Apache NiFi
> Issue Type: Bug
> Components: Extensions
> Reporter: Matt Gilman
> Assignee: Matt Gilman
> Priority: Critical
> Fix For: 1.6.0
>
>
> Authorization requests/results are now explicitly audited. This change was
> due to the fact that the Ranger was auditing a lot of false positives
> previously. This is partly because the NiFi uses authorization to check which
> features the user may have permissions to. This check is used to
> enable/disable various parts of the UI. The remainder of the false positives
> came from the authorizer not knowing the entire context of the request. For
> instance, when a Processor has no policy we check its parent and so on.
> The memory leak is due to the authorizer holding onto authorization results
> that are never destined for auditing.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
