[GitHub] nifi pull request #2703: NIFI-4907: add 'view provenance' component policy

mcgilman Fri, 01 Jun 2018 12:28:38 -0700

Github user mcgilman commented on a diff in the pull request:

    https://github.com/apache/nifi/pull/2703#discussion_r192493635
  
    --- Diff: 
nifi-nar-bundles/nifi-provenance-repository-bundle/nifi-volatile-provenance-repository/src/main/java/org/apache/nifi/provenance/VolatileProvenanceRepository.java
 ---
    @@ -280,12 +276,7 @@ protected void authorize(final ProvenanceEventRecord 
event, final NiFiUser user)
                 return;
             }
     
    -        final Authorizable eventAuthorizable;
    -        if (event.isRemotePortType()) {
    -            eventAuthorizable = 
resourceFactory.createRemoteDataAuthorizable(event.getComponentId());
    -        } else {
    -            eventAuthorizable = 
resourceFactory.createLocalDataAuthorizable(event.getComponentId());
    -        }
    +        final Authorizable eventAuthorizable = 
resourceFactory.createProvenanceDataAuthorizable(event.getComponentId());
             eventAuthorizable.authorize(authorizer, RequestAction.READ, user, 
event.getAttributes());
    --- End diff --
    
    I don't think the attributes are necessary here. I'm pretty sure the event 
attributes would be necessary for authorizing access to attributes/content.

---

[GitHub] nifi pull request #2703: NIFI-4907: add 'view provenance' component policy

Reply via email to