From 14f9bdeddbe4960809e36a060c3023c21a0e0a59 Mon Sep 17 00:00:00 2001 From: Ramesh Mani Date: Sun, 24 May 2026 01:18:13 -0700 Subject: [PATCH 1/2] RANGER-5483:Add Audit Server as a destination for all the Ranger Plugins available --- distro/src/main/assembly/hbase-agent.xml | 1 + distro/src/main/assembly/kms.xml | 1 + distro/src/main/assembly/knox-agent.xml | 1 + distro/src/main/assembly/pdp.xml | 1 + distro/src/main/assembly/plugin-atlas.xml | 1 + distro/src/main/assembly/plugin-elasticsearch.xml | 1 + distro/src/main/assembly/plugin-kafka.xml | 1 + distro/src/main/assembly/plugin-kms.xml | 1 + distro/src/main/assembly/plugin-kylin.xml | 1 + distro/src/main/assembly/plugin-ozone.xml | 1 + distro/src/main/assembly/plugin-presto.xml | 1 + distro/src/main/assembly/plugin-solr.xml | 1 + distro/src/main/assembly/plugin-sqoop.xml | 1 + distro/src/main/assembly/plugin-trino.xml | 1 + distro/src/main/assembly/plugin-yarn.xml | 1 + distro/src/main/assembly/storm-agent.xml | 1 + hbase-agent/conf/ranger-hbase-audit-changes.cfg | 5 +++++ hbase-agent/pom.xml | 5 +++++ hbase-agent/scripts/install.properties | 4 ++++ kms/scripts/install.properties | 4 ++++ knox-agent/conf/ranger-knox-audit-changes.cfg | 5 +++++ knox-agent/pom.xml | 5 +++++ knox-agent/scripts/install.properties | 4 ++++ plugin-atlas/conf/ranger-atlas-audit-changes.cfg | 5 +++++ plugin-atlas/pom.xml | 5 +++++ plugin-atlas/scripts/install.properties | 4 ++++ .../conf/ranger-elasticsearch-audit-changes.cfg | 5 +++++ plugin-elasticsearch/pom.xml | 5 +++++ plugin-elasticsearch/scripts/install.properties | 4 ++++ plugin-kafka/conf/ranger-kafka-audit-changes.cfg | 5 +++++ plugin-kafka/pom.xml | 5 +++++ plugin-kafka/scripts/install.properties | 4 ++++ plugin-kms/conf/ranger-kms-audit-changes.cfg | 5 +++++ plugin-kms/pom.xml | 5 +++++ plugin-kudu/pom.xml | 5 +++++ plugin-kylin/conf/ranger-kylin-audit-changes.cfg | 5 +++++ plugin-kylin/pom.xml | 5 +++++ plugin-kylin/scripts/install.properties | 4 ++++ plugin-nifi-registry/pom.xml | 5 +++++ plugin-nifi/pom.xml | 5 +++++ plugin-ozone/conf/ranger-ozone-audit-changes.cfg | 5 +++++ plugin-ozone/pom.xml | 5 +++++ plugin-ozone/scripts/install.properties | 4 ++++ plugin-presto/conf/ranger-presto-audit-changes.cfg | 5 +++++ plugin-presto/pom.xml | 5 +++++ plugin-presto/scripts/install.properties | 4 ++++ plugin-solr/conf/ranger-solr-audit-changes.cfg | 5 +++++ plugin-solr/pom.xml | 5 +++++ plugin-solr/scripts/install.properties | 4 ++++ plugin-sqoop/conf/ranger-sqoop-audit-changes.cfg | 5 +++++ plugin-sqoop/pom.xml | 5 +++++ plugin-sqoop/scripts/install.properties | 4 ++++ plugin-trino/conf/ranger-trino-audit-changes.cfg | 5 +++++ plugin-trino/pom.xml | 5 +++++ plugin-trino/scripts/install.properties | 4 ++++ plugin-yarn/conf/ranger-yarn-audit-changes.cfg | 5 +++++ plugin-yarn/pom.xml | 5 +++++ plugin-yarn/scripts/install.properties | 4 ++++ ranger-examples/plugin-sampleapp/pom.xml | 5 +++++ storm-agent/conf/ranger-storm-audit-changes.cfg | 5 +++++ storm-agent/scripts/install.properties | 4 ++++ 61 files changed, 227 insertions(+) diff --git a/distro/src/main/assembly/hbase-agent.xml b/distro/src/main/assembly/hbase-agent.xml index 0431bb5f8e5..be0703b0233 100644 --- a/distro/src/main/assembly/hbase-agent.xml +++ b/distro/src/main/assembly/hbase-agent.xml @@ -42,6 +42,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/kms.xml b/distro/src/main/assembly/kms.xml index 89e912d8a5d..1c9472889f5 100755 --- a/distro/src/main/assembly/kms.xml +++ b/distro/src/main/assembly/kms.xml @@ -290,6 +290,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/knox-agent.xml b/distro/src/main/assembly/knox-agent.xml index f4ff06e9e14..a15036e4130 100644 --- a/distro/src/main/assembly/knox-agent.xml +++ b/distro/src/main/assembly/knox-agent.xml @@ -43,6 +43,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/pdp.xml b/distro/src/main/assembly/pdp.xml index 3aa90ff4f13..f5a0a66c25e 100644 --- a/distro/src/main/assembly/pdp.xml +++ b/distro/src/main/assembly/pdp.xml @@ -32,6 +32,7 @@ org.apache.ranger:credentialbuilder org.apache.ranger:authz-embedded org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authn diff --git a/distro/src/main/assembly/plugin-atlas.xml b/distro/src/main/assembly/plugin-atlas.xml index a53a909fdbc..adfe237e150 100644 --- a/distro/src/main/assembly/plugin-atlas.xml +++ b/distro/src/main/assembly/plugin-atlas.xml @@ -43,6 +43,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-elasticsearch.xml b/distro/src/main/assembly/plugin-elasticsearch.xml index 5d13459ceb1..cfb72d20aa8 100644 --- a/distro/src/main/assembly/plugin-elasticsearch.xml +++ b/distro/src/main/assembly/plugin-elasticsearch.xml @@ -47,6 +47,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-es org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-kafka.xml b/distro/src/main/assembly/plugin-kafka.xml index 84ed69c16d9..f79cf7e4328 100644 --- a/distro/src/main/assembly/plugin-kafka.xml +++ b/distro/src/main/assembly/plugin-kafka.xml @@ -38,6 +38,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-kms.xml b/distro/src/main/assembly/plugin-kms.xml index 40537739730..aab96deb5de 100755 --- a/distro/src/main/assembly/plugin-kms.xml +++ b/distro/src/main/assembly/plugin-kms.xml @@ -42,6 +42,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-kylin.xml b/distro/src/main/assembly/plugin-kylin.xml index 5c8e1102236..0d52c90054e 100644 --- a/distro/src/main/assembly/plugin-kylin.xml +++ b/distro/src/main/assembly/plugin-kylin.xml @@ -42,6 +42,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-ozone.xml b/distro/src/main/assembly/plugin-ozone.xml index 8c534d10c80..ec43244cd18 100644 --- a/distro/src/main/assembly/plugin-ozone.xml +++ b/distro/src/main/assembly/plugin-ozone.xml @@ -71,6 +71,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-presto.xml b/distro/src/main/assembly/plugin-presto.xml index 493a384451a..6b38a449843 100644 --- a/distro/src/main/assembly/plugin-presto.xml +++ b/distro/src/main/assembly/plugin-presto.xml @@ -53,6 +53,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-solr.xml b/distro/src/main/assembly/plugin-solr.xml index 3203831d1c8..d1b43ae3630 100644 --- a/distro/src/main/assembly/plugin-solr.xml +++ b/distro/src/main/assembly/plugin-solr.xml @@ -37,6 +37,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-sqoop.xml b/distro/src/main/assembly/plugin-sqoop.xml index 7ec87abc891..e5e90851d21 100644 --- a/distro/src/main/assembly/plugin-sqoop.xml +++ b/distro/src/main/assembly/plugin-sqoop.xml @@ -42,6 +42,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-trino.xml b/distro/src/main/assembly/plugin-trino.xml index 895b4085203..7512199242b 100644 --- a/distro/src/main/assembly/plugin-trino.xml +++ b/distro/src/main/assembly/plugin-trino.xml @@ -27,6 +27,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/plugin-yarn.xml b/distro/src/main/assembly/plugin-yarn.xml index 102e5703121..52f6335ae67 100644 --- a/distro/src/main/assembly/plugin-yarn.xml +++ b/distro/src/main/assembly/plugin-yarn.xml @@ -42,6 +42,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/distro/src/main/assembly/storm-agent.xml b/distro/src/main/assembly/storm-agent.xml index 4c58db7f797..027a2a47fe4 100644 --- a/distro/src/main/assembly/storm-agent.xml +++ b/distro/src/main/assembly/storm-agent.xml @@ -42,6 +42,7 @@ true org.apache.ranger:ranger-audit-core + org.apache.ranger:ranger-audit-dest-auditserver org.apache.ranger:ranger-audit-dest-hdfs org.apache.ranger:ranger-audit-dest-solr org.apache.ranger:ranger-authz-api diff --git a/hbase-agent/conf/ranger-hbase-audit-changes.cfg b/hbase-agent/conf/ranger-hbase-audit-changes.cfg index 15d19e58002..6096f9397b7 100644 --- a/hbase-agent/conf/ranger-hbase-audit-changes.cfg +++ b/hbase-agent/conf/ranger-hbase-audit-changes.cfg @@ -91,3 +91,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/hbase-agent/pom.xml b/hbase-agent/pom.xml index bf827b38ed3..b4af771536a 100644 --- a/hbase-agent/pom.xml +++ b/hbase-agent/pom.xml @@ -221,6 +221,11 @@ httpcore ${httpcomponents.httpcore.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/hbase-agent/scripts/install.properties b/hbase-agent/scripts/install.properties index 4ad1269b020..5551453135f 100644 --- a/hbase-agent/scripts/install.properties +++ b/hbase-agent/scripts/install.properties @@ -122,6 +122,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties # diff --git a/kms/scripts/install.properties b/kms/scripts/install.properties index 499ebbaecef..c8b8d5f0e7f 100755 --- a/kms/scripts/install.properties +++ b/kms/scripts/install.properties @@ -264,6 +264,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties diff --git a/knox-agent/conf/ranger-knox-audit-changes.cfg b/knox-agent/conf/ranger-knox-audit-changes.cfg index 651372d3ee1..c81a52746ff 100644 --- a/knox-agent/conf/ranger-knox-audit-changes.cfg +++ b/knox-agent/conf/ranger-knox-audit-changes.cfg @@ -89,3 +89,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/knox-agent/pom.xml b/knox-agent/pom.xml index f799d82e471..4b7a3cd7dc8 100644 --- a/knox-agent/pom.xml +++ b/knox-agent/pom.xml @@ -116,6 +116,11 @@ + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/knox-agent/scripts/install.properties b/knox-agent/scripts/install.properties index d4cfa5202b9..85ef353e3ae 100644 --- a/knox-agent/scripts/install.properties +++ b/knox-agent/scripts/install.properties @@ -114,6 +114,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties diff --git a/plugin-atlas/conf/ranger-atlas-audit-changes.cfg b/plugin-atlas/conf/ranger-atlas-audit-changes.cfg index 59c3927e999..86e14684d28 100644 --- a/plugin-atlas/conf/ranger-atlas-audit-changes.cfg +++ b/plugin-atlas/conf/ranger-atlas-audit-changes.cfg @@ -48,4 +48,9 @@ xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.A xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists + diff --git a/plugin-atlas/pom.xml b/plugin-atlas/pom.xml index 631500c6dc4..2dc2c42e71b 100644 --- a/plugin-atlas/pom.xml +++ b/plugin-atlas/pom.xml @@ -102,6 +102,11 @@ httpcore ${httpcomponents.httpcore.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-atlas/scripts/install.properties b/plugin-atlas/scripts/install.properties index fdcdbd3ec22..404e209b33e 100644 --- a/plugin-atlas/scripts/install.properties +++ b/plugin-atlas/scripts/install.properties @@ -117,6 +117,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties # diff --git a/plugin-elasticsearch/conf/ranger-elasticsearch-audit-changes.cfg b/plugin-elasticsearch/conf/ranger-elasticsearch-audit-changes.cfg index 651372d3ee1..c81a52746ff 100644 --- a/plugin-elasticsearch/conf/ranger-elasticsearch-audit-changes.cfg +++ b/plugin-elasticsearch/conf/ranger-elasticsearch-audit-changes.cfg @@ -89,3 +89,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-elasticsearch/pom.xml b/plugin-elasticsearch/pom.xml index 581fdbe1630..8d8f360e375 100644 --- a/plugin-elasticsearch/pom.xml +++ b/plugin-elasticsearch/pom.xml @@ -46,6 +46,11 @@ credentialbuilder ${project.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-elasticsearch/scripts/install.properties b/plugin-elasticsearch/scripts/install.properties index 971b7c79703..35ee159ae34 100644 --- a/plugin-elasticsearch/scripts/install.properties +++ b/plugin-elasticsearch/scripts/install.properties @@ -116,6 +116,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties # diff --git a/plugin-kafka/conf/ranger-kafka-audit-changes.cfg b/plugin-kafka/conf/ranger-kafka-audit-changes.cfg index 1903d98ca6d..ba06eddc40c 100644 --- a/plugin-kafka/conf/ranger-kafka-audit-changes.cfg +++ b/plugin-kafka/conf/ranger-kafka-audit-changes.cfg @@ -82,3 +82,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-kafka/pom.xml b/plugin-kafka/pom.xml index a2eb04af8e9..d925a721ba8 100644 --- a/plugin-kafka/pom.xml +++ b/plugin-kafka/pom.xml @@ -76,6 +76,11 @@ credentialbuilder ${project.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-kafka/scripts/install.properties b/plugin-kafka/scripts/install.properties index 12736c5b7cf..a95023004c4 100644 --- a/plugin-kafka/scripts/install.properties +++ b/plugin-kafka/scripts/install.properties @@ -117,6 +117,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties # diff --git a/plugin-kms/conf/ranger-kms-audit-changes.cfg b/plugin-kms/conf/ranger-kms-audit-changes.cfg index d13d2028879..c208975d372 100644 --- a/plugin-kms/conf/ranger-kms-audit-changes.cfg +++ b/plugin-kms/conf/ranger-kms-audit-changes.cfg @@ -83,3 +83,8 @@ xasecure.audit.destination.hdfs.config.fs.azure.account.keyprovider.%AZURE.ACCOU #xasecure.audit.destination.file %XAAUDIT.FILE.ENABLE% mod create-if-not-exists #xasecure.audit.destination.file.dir %XAAUDIT.FILE.DIR% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-kms/pom.xml b/plugin-kms/pom.xml index 28196abf548..eb9aad4e9cc 100644 --- a/plugin-kms/pom.xml +++ b/plugin-kms/pom.xml @@ -51,6 +51,11 @@ httpcore ${httpcomponents.httpcore.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-kudu/pom.xml b/plugin-kudu/pom.xml index f66d50dc52e..f4342663a86 100644 --- a/plugin-kudu/pom.xml +++ b/plugin-kudu/pom.xml @@ -36,6 +36,11 @@ credentialbuilder ${project.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-kylin/conf/ranger-kylin-audit-changes.cfg b/plugin-kylin/conf/ranger-kylin-audit-changes.cfg index 651372d3ee1..c81a52746ff 100644 --- a/plugin-kylin/conf/ranger-kylin-audit-changes.cfg +++ b/plugin-kylin/conf/ranger-kylin-audit-changes.cfg @@ -89,3 +89,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-kylin/pom.xml b/plugin-kylin/pom.xml index bd689ff2f9b..51100073a23 100644 --- a/plugin-kylin/pom.xml +++ b/plugin-kylin/pom.xml @@ -57,6 +57,11 @@ + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-kylin/scripts/install.properties b/plugin-kylin/scripts/install.properties index e807b483ee8..feda3478472 100644 --- a/plugin-kylin/scripts/install.properties +++ b/plugin-kylin/scripts/install.properties @@ -116,6 +116,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties diff --git a/plugin-nifi-registry/pom.xml b/plugin-nifi-registry/pom.xml index 9cee4fc2b72..e38278ea5c2 100644 --- a/plugin-nifi-registry/pom.xml +++ b/plugin-nifi-registry/pom.xml @@ -67,6 +67,11 @@ + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-nifi/pom.xml b/plugin-nifi/pom.xml index 43bb1980115..48bf81e9b44 100644 --- a/plugin-nifi/pom.xml +++ b/plugin-nifi/pom.xml @@ -57,6 +57,11 @@ + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-ozone/conf/ranger-ozone-audit-changes.cfg b/plugin-ozone/conf/ranger-ozone-audit-changes.cfg index cc15921ccc8..619f48d77e9 100644 --- a/plugin-ozone/conf/ranger-ozone-audit-changes.cfg +++ b/plugin-ozone/conf/ranger-ozone-audit-changes.cfg @@ -82,3 +82,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-ozone/pom.xml b/plugin-ozone/pom.xml index 6794bf5f20a..0aa9f7f3ac2 100644 --- a/plugin-ozone/pom.xml +++ b/plugin-ozone/pom.xml @@ -110,6 +110,11 @@ limitations under the License. credentialbuilder ${project.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-ozone/scripts/install.properties b/plugin-ozone/scripts/install.properties index 9285505a0ca..02c1f141fb4 100644 --- a/plugin-ozone/scripts/install.properties +++ b/plugin-ozone/scripts/install.properties @@ -117,6 +117,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties # diff --git a/plugin-presto/conf/ranger-presto-audit-changes.cfg b/plugin-presto/conf/ranger-presto-audit-changes.cfg index 1903d98ca6d..ba06eddc40c 100644 --- a/plugin-presto/conf/ranger-presto-audit-changes.cfg +++ b/plugin-presto/conf/ranger-presto-audit-changes.cfg @@ -82,3 +82,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-presto/pom.xml b/plugin-presto/pom.xml index 386c6b8020d..9c28c1cb900 100644 --- a/plugin-presto/pom.xml +++ b/plugin-presto/pom.xml @@ -61,6 +61,11 @@ httpcore ${httpcomponents.httpcore.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-presto/scripts/install.properties b/plugin-presto/scripts/install.properties index fa3984a1ea1..c5e091d2da6 100644 --- a/plugin-presto/scripts/install.properties +++ b/plugin-presto/scripts/install.properties @@ -116,6 +116,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties diff --git a/plugin-solr/conf/ranger-solr-audit-changes.cfg b/plugin-solr/conf/ranger-solr-audit-changes.cfg index 651372d3ee1..c81a52746ff 100644 --- a/plugin-solr/conf/ranger-solr-audit-changes.cfg +++ b/plugin-solr/conf/ranger-solr-audit-changes.cfg @@ -89,3 +89,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-solr/pom.xml b/plugin-solr/pom.xml index b0562056000..863027c535c 100644 --- a/plugin-solr/pom.xml +++ b/plugin-solr/pom.xml @@ -67,6 +67,11 @@ credentialbuilder ${project.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-solr/scripts/install.properties b/plugin-solr/scripts/install.properties index fb85fb2cbd1..3fdda8054c8 100644 --- a/plugin-solr/scripts/install.properties +++ b/plugin-solr/scripts/install.properties @@ -117,6 +117,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties # diff --git a/plugin-sqoop/conf/ranger-sqoop-audit-changes.cfg b/plugin-sqoop/conf/ranger-sqoop-audit-changes.cfg index 651372d3ee1..c81a52746ff 100644 --- a/plugin-sqoop/conf/ranger-sqoop-audit-changes.cfg +++ b/plugin-sqoop/conf/ranger-sqoop-audit-changes.cfg @@ -89,3 +89,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-sqoop/pom.xml b/plugin-sqoop/pom.xml index cf4a99dce44..b73b4a15429 100644 --- a/plugin-sqoop/pom.xml +++ b/plugin-sqoop/pom.xml @@ -57,6 +57,11 @@ + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-sqoop/scripts/install.properties b/plugin-sqoop/scripts/install.properties index 23c9545fc6c..576d588cdbc 100644 --- a/plugin-sqoop/scripts/install.properties +++ b/plugin-sqoop/scripts/install.properties @@ -116,6 +116,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties diff --git a/plugin-trino/conf/ranger-trino-audit-changes.cfg b/plugin-trino/conf/ranger-trino-audit-changes.cfg index 1903d98ca6d..ba06eddc40c 100644 --- a/plugin-trino/conf/ranger-trino-audit-changes.cfg +++ b/plugin-trino/conf/ranger-trino-audit-changes.cfg @@ -82,3 +82,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-trino/pom.xml b/plugin-trino/pom.xml index d794611b2ed..15f6d2dba3b 100644 --- a/plugin-trino/pom.xml +++ b/plugin-trino/pom.xml @@ -102,6 +102,11 @@ httpcore ${httpcomponents.httpcore.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-trino/scripts/install.properties b/plugin-trino/scripts/install.properties index 945ff26a4e1..c9e081f8cd7 100644 --- a/plugin-trino/scripts/install.properties +++ b/plugin-trino/scripts/install.properties @@ -118,6 +118,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties diff --git a/plugin-yarn/conf/ranger-yarn-audit-changes.cfg b/plugin-yarn/conf/ranger-yarn-audit-changes.cfg index 651372d3ee1..c81a52746ff 100644 --- a/plugin-yarn/conf/ranger-yarn-audit-changes.cfg +++ b/plugin-yarn/conf/ranger-yarn-audit-changes.cfg @@ -89,3 +89,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/plugin-yarn/pom.xml b/plugin-yarn/pom.xml index cae76d874fb..d4035a57644 100644 --- a/plugin-yarn/pom.xml +++ b/plugin-yarn/pom.xml @@ -99,6 +99,11 @@ + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/plugin-yarn/scripts/install.properties b/plugin-yarn/scripts/install.properties index c0be7ea403d..1dde78f5cfd 100644 --- a/plugin-yarn/scripts/install.properties +++ b/plugin-yarn/scripts/install.properties @@ -116,6 +116,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties diff --git a/ranger-examples/plugin-sampleapp/pom.xml b/ranger-examples/plugin-sampleapp/pom.xml index c2bbf4b6111..8e8e5c338d9 100644 --- a/ranger-examples/plugin-sampleapp/pom.xml +++ b/ranger-examples/plugin-sampleapp/pom.xml @@ -82,6 +82,11 @@ hadoop-client-runtime ${hadoop.version} + + org.apache.ranger + ranger-audit-dest-auditserver + ${project.version} + org.apache.ranger ranger-audit-dest-hdfs diff --git a/storm-agent/conf/ranger-storm-audit-changes.cfg b/storm-agent/conf/ranger-storm-audit-changes.cfg index 651372d3ee1..c81a52746ff 100644 --- a/storm-agent/conf/ranger-storm-audit-changes.cfg +++ b/storm-agent/conf/ranger-storm-audit-changes.cfg @@ -89,3 +89,8 @@ xasecure.audit.log4j.async.max.queue.size %XAAUDIT.LOG4J.ASYNC.MA xasecure.audit.log4j.async.max.flush.interval.ms %XAAUDIT.LOG4J.ASYNC.MAX.FLUSH.INTERVAL.MS% mod create-if-not-exists xasecure.audit.destination.log4j %XAAUDIT.LOG4J.DESTINATION.LOG4J% mod create-if-not-exists xasecure.audit.destination.log4j.logger %XAAUDIT.LOG4J.DESTINATION.LOG4J.LOGGER% mod create-if-not-exists + +#Audit Service Destination +xasecure.audit.destination.auditserver %XAAUDIT.AUDITSERVER.ENABLE% mod create-if-not-exists +xasecure.audit.destination.auditserver.url %XAAUDIT.AUDITSERVER.URL% mod create-if-not-exists +xasecure.audit.destination.auditserver.batch.filespool.dir %XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR% mod create-if-not-exists diff --git a/storm-agent/scripts/install.properties b/storm-agent/scripts/install.properties index 80a1ba09293..b16d74ff6a5 100644 --- a/storm-agent/scripts/install.properties +++ b/storm-agent/scripts/install.properties @@ -116,6 +116,10 @@ XAAUDIT.AMAZON_CLOUDWATCH.LOG_STREAM_PREFIX=NONE XAAUDIT.AMAZON_CLOUDWATCH.FILE_SPOOL_DIR=NONE XAAUDIT.AMAZON_CLOUDWATCH.REGION=NONE +#Audit Server Provider +XAAUDIT.AUDITSERVER.ENABLE=false +XAAUDIT.AUDITSERVER.URL=http://ranger-audit:7081 +XAAUDIT.AUDITSERVER.FILE_SPOOL_DIR=/var/log/hive/audit/http/spool # End of V3 properties From 17b4965fd8f16a767a8aaf0c8cdd697eec37342c Mon Sep 17 00:00:00 2001 From: Ramesh Mani Date: Wed, 27 May 2026 12:23:15 -0700 Subject: [PATCH 2/2] RANGER-5483:Add Audit Server as a destination for all the Ranger Plugins available - addressed review comments --- .../scripts/hbase/ranger-hbase-plugin-install.properties | 4 ++-- .../scripts/knox/ranger-knox-plugin-install.properties | 2 +- .../scripts/solr/ranger-solr-plugin-install.properties | 2 +- 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/dev-support/ranger-docker/scripts/hbase/ranger-hbase-plugin-install.properties b/dev-support/ranger-docker/scripts/hbase/ranger-hbase-plugin-install.properties index 8cd2f24d00f..1d64080bd72 100644 --- a/dev-support/ranger-docker/scripts/hbase/ranger-hbase-plugin-install.properties +++ b/dev-support/ranger-docker/scripts/hbase/ranger-hbase-plugin-install.properties @@ -46,7 +46,7 @@ XAAUDIT.HDFS.LOCAL_BUFFER_FLUSH_INTERVAL_SECONDS=60 XAAUDIT.HDFS.LOCAL_BUFFER_ROLLOVER_INTERVAL_SECONDS=600 XAAUDIT.HDFS.LOCAL_ARCHIVE_MAX_FILE_COUNT=10 -XAAUDIT.SOLR.ENABLE=true +XAAUDIT.SOLR.ENABLE=false XAAUDIT.SOLR.URL=http://ranger-solr.rangernw:8983/solr/ranger_audits XAAUDIT.SOLR.USER=NONE XAAUDIT.SOLR.PASSWORD=NONE @@ -71,7 +71,7 @@ XAAUDIT.ELASTICSEARCH.INDEX=NONE XAAUDIT.ELASTICSEARCH.PORT=NONE XAAUDIT.ELASTICSEARCH.PROTOCOL=NONE -XAAUDIT.HDFS.ENABLE=true +XAAUDIT.HDFS.ENABLE=false XAAUDIT.HDFS.HDFS_DIR=hdfs://ranger-hadoop:9000/ranger/audit XAAUDIT.HDFS.FILE_SPOOL_DIR=/var/log/hadoop/hbase/audit/hdfs/spool diff --git a/dev-support/ranger-docker/scripts/knox/ranger-knox-plugin-install.properties b/dev-support/ranger-docker/scripts/knox/ranger-knox-plugin-install.properties index a471ec3fa47..3b7d99b54d9 100644 --- a/dev-support/ranger-docker/scripts/knox/ranger-knox-plugin-install.properties +++ b/dev-support/ranger-docker/scripts/knox/ranger-knox-plugin-install.properties @@ -26,7 +26,7 @@ UGI_JAAS_APPCONFIG=unknown CUSTOM_USER=knox CUSTOM_GROUP=knox -XAAUDIT.SOLR.IS_ENABLED=true +XAAUDIT.SOLR.IS_ENABLED=false XAAUDIT.SOLR.MAX_QUEUE_SIZE=1 XAAUDIT.SOLR.MAX_FLUSH_INTERVAL_MS=1000 XAAUDIT.SOLR.SOLR_URL=http://ranger-solr:8983/solr/ranger_audits diff --git a/dev-support/ranger-docker/scripts/solr/ranger-solr-plugin-install.properties b/dev-support/ranger-docker/scripts/solr/ranger-solr-plugin-install.properties index 2f8b69e4308..fbb1670e107 100644 --- a/dev-support/ranger-docker/scripts/solr/ranger-solr-plugin-install.properties +++ b/dev-support/ranger-docker/scripts/solr/ranger-solr-plugin-install.properties @@ -20,7 +20,7 @@ UGI_INITIALIZE=true UGI_LOGIN_TYPE=jaas UGI_JAAS_APPCONFIG=Client -XAAUDIT.SOLR.IS_ENABLED=true +XAAUDIT.SOLR.IS_ENABLED=false XAAUDIT.SOLR.MAX_QUEUE_SIZE=1 XAAUDIT.SOLR.MAX_FLUSH_INTERVAL_MS=1000 XAAUDIT.SOLR.SOLR_URL=http://ranger-solr.rangernw:8983/solr/ranger_audits