apache/kyuubi
1
0
Fork 0
Code Issues Pull Requests Actions 5 Packages Projects Releases Wiki Activity

[KYUUBI #6666][AUTHZ]Upgrade Ranger plugin to 2.5.0

Browse Source 
# 🔍 Description
## Issue References 🔗

This pull request fixes #6666

## Describe Your Solution 🔧

Bump ranger version to 2.5.0
Release notes: https://cwiki.apache.org/confluence/display/RANGER/Apache+Ranger+2.5.0+-+Release+Notes

## Types of changes 🔖

- [ ] Bugfix (non-breaking change which fixes an issue)
- [ ] New feature (non-breaking change which adds functionality)
- [ ] Breaking change (fix or feature that would cause existing functionality to change)

## Test Plan 🧪

#### Behavior Without This Pull Request ⚰️

#### Behavior With This Pull Request 🎉

#### Related Unit Tests

---

# Checklist 📝

- [ ] This patch was not authored or co-authored using [Generative Tooling](https://www.apache.org/legal/generative-tooling.html)

**Be nice. Be informative.**

Closes #6692 from Madhukar525722/ranger_upgrade.

Closes #6666

88e1e12c5 [madlnu] [KYUUBI #6666] Upgrade spark ranger plugin to 2.5.0

Authored-by: madlnu <madlnu@visa.com>
Signed-off-by: Cheng Pan <chengpan@apache.org>
This commit is contained in:
madlnu 2024-09-23 17:51:17 +08:00 committed by Cheng Pan
parent 408d4a3278
commit ebe7e922ee
No known key found for this signature in database
GPG Key ID: 8001952629BCC75D
5 changed files with 58 additions and 278 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
docs/security/authorization/spark/build.md
View File

@ -83,6 +83,7 @@ The available `ranger.version`s are shown in the following table.
| Ranger Version | Supported | Remark |
|:--------------:|:---------:|:-----------------------------------------------------------------------------------------:|
| 2.5.x | √ | - |
| 2.4.x | √ | - |
| 2.3.x | √ | - |
| 2.2.x | √ | - |

5
extensions/spark/kyuubi-spark-authz/README.md
View File

@ -26,7 +26,7 @@
## Build
```shell
build/mvn clean package -DskipTests -pl :kyuubi-spark-authz_2.12 -am -Dspark.version=3.2.1 -Dranger.version=2.4.0
build/mvn clean package -DskipTests -pl :kyuubi-spark-authz_2.12 -am -Dspark.version=3.2.1 -Dranger.version=2.5.0
```
### Supported Apache Spark Versions
@ -46,7 +46,8 @@ build/mvn clean package -DskipTests -pl :kyuubi-spark-authz_2.12 -am -Dspark.ver
`-Dranger.version=`
- [x] 2.4.x (default)
- [x] 2.5.x (default)
- [x] 2.4.x
- [x] 2.3.x
- [x] 2.2.x
- [x] 2.1.x

2
extensions/spark/kyuubi-spark-authz/pom.xml
View File

@ -32,7 +32,7 @@
<url>https://kyuubi.apache.org/</url>
<properties>
<ranger.version>2.4.0</ranger.version>
<ranger.version>2.5.0</ranger.version>
<!-- the following components' version may need to tune to align w/ the ranger.version-->
<gethostname4j.version>1.0.0</gethostname4j.version>
<jersey.client.version>1.19.4</jersey.client.version>

3
extensions/spark/kyuubi-spark-authz/src/test/gen/scala/org/apache/kyuubi/plugin/spark/authz/gen/PolicyJsonFileGenerator.scala
View File

@ -22,7 +22,7 @@ import java.nio.file.{Files, Paths, StandardOpenOption}
import java.util.UUID
import com.fasterxml.jackson.annotation.JsonInclude.Include
import com.fasterxml.jackson.databind.{JsonNode, ObjectMapper}
import com.fasterxml.jackson.databind.{JsonNode, ObjectMapper, SerializationFeature}
import com.fasterxml.jackson.databind.json.JsonMapper
import com.fasterxml.jackson.databind.node.ObjectNode
import com.fasterxml.jackson.module.scala.DefaultScalaModule
@ -57,6 +57,7 @@ class PolicyJsonFileGenerator extends AnyFunSuite {
final private val mapper: ObjectMapper = JsonMapper.builder()
.addModule(DefaultScalaModule)
.serializationInclusion(Include.NON_NULL)
.enable(SerializationFeature.ORDER_MAP_ENTRIES_BY_KEYS)
.build()
test("check ranger policy file") {

325
extensions/spark/kyuubi-spark-authz/src/test/resources/sparkSql_hive_jenkins.json
View File

@ -21,7 +21,6 @@
"isRecursive" : true
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
@ -55,19 +54,8 @@
"isAllowed" : true
} ],
"users" : [ "admin" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 1,
@ -81,12 +69,12 @@
"description" : "Policy for all - database, table, column",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"column" : {
"values" : [ "*" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"database" : {
"values" : [ "*" ],
"isExcludes" : false,
"isRecursive" : false
@ -97,7 +85,6 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
@ -131,19 +118,8 @@
"isAllowed" : true
} ],
"users" : [ "admin" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 2,
@ -168,7 +144,6 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
@ -202,19 +177,8 @@
"isAllowed" : true
} ],
"users" : [ "admin" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 3,
@ -228,13 +192,13 @@
"description" : "Policy for all - database, udf",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog", "iceberg_ns", "ns1", "paimon_ns" ],
"column" : {
"values" : [ "*" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "*" ],
"database" : {
"values" : [ "default", "spark_catalog", "iceberg_ns", "ns1", "paimon_ns" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -244,7 +208,6 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
@ -278,9 +241,6 @@
"isAllowed" : true
} ],
"users" : [ "bob", "perm_view_user", "{OWNER}" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
}, {
"accesses" : [ {
@ -288,19 +248,8 @@
"isAllowed" : true
} ],
"users" : [ "default_table_owner", "create_only_user" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 4,
@ -311,16 +260,15 @@
"name" : "default_kent",
"policyType" : 0,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog" ],
"column" : {
"values" : [ "key" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "key" ],
"database" : {
"values" : [ "default", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -330,7 +278,6 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
@ -364,9 +311,6 @@
"isAllowed" : true
} ],
"users" : [ "kent" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
}, {
"accesses" : [ {
@ -374,19 +318,8 @@
"isAllowed" : true
} ],
"users" : [ "default_table_owner", "create_only_user" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 5,
@ -397,16 +330,15 @@
"name" : "default_bob_use",
"policyType" : 0,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default_bob", "spark_catalog" ],
"column" : {
"values" : [ "*" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "*" ],
"database" : {
"values" : [ "default_bob", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -416,26 +348,14 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "update",
"isAllowed" : true
} ],
"users" : [ "bob" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 6,
@ -446,16 +366,15 @@
"name" : "default_bob_select",
"policyType" : 0,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default_bob", "spark_catalog" ],
"column" : {
"values" : [ "*" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "*" ],
"database" : {
"values" : [ "default_bob", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -465,7 +384,6 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
@ -475,19 +393,8 @@
"isAllowed" : true
} ],
"users" : [ "bob" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 7,
@ -498,16 +405,15 @@
"name" : "someone_access_perm_view",
"policyType" : 0,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default" ],
"column" : {
"values" : [ "*" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "*" ],
"database" : {
"values" : [ "default" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -517,26 +423,14 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "user_perm_view_only" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 8,
@ -547,16 +441,15 @@
"name" : "someone_access_table2",
"policyType" : 0,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default" ],
"column" : {
"values" : [ "*" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "*" ],
"database" : {
"values" : [ "default" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -566,26 +459,14 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "user_table2_only" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true
} ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 9,
@ -596,7 +477,6 @@
"name" : "src_key_less_than_20",
"policyType" : 2,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
@ -610,29 +490,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "bob", "perm_view_user" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : false,
"rowFilterInfo" : {
"filterExpr" : "key<20"
}
} ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 10,
@ -643,7 +511,6 @@
"name" : "perm_view_key_less_than_20",
"policyType" : 2,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
@ -657,29 +524,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ ],
"rowFilterPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "perm_view_user" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : false,
"rowFilterInfo" : {
"filterExpr" : "key<20"
}
} ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 11,
@ -690,16 +545,15 @@
"name" : "src_value_hash_perm_view",
"policyType" : 1,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog" ],
"column" : {
"values" : [ "value1" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "value1" ],
"database" : {
"values" : [ "default", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -709,29 +563,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "bob" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true,
"dataMaskInfo" : {
"dataMaskType" : "MASK_HASH"
}
} ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 12,
@ -742,16 +584,15 @@
"name" : "src_value_hash",
"policyType" : 1,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog" ],
"column" : {
"values" : [ "value1" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "value1" ],
"database" : {
"values" : [ "default", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -761,29 +602,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "perm_view_user" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true,
"dataMaskInfo" : {
"dataMaskType" : "MASK_HASH"
}
} ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 13,
@ -794,16 +623,15 @@
"name" : "src_value2_nullify",
"policyType" : 1,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog", "iceberg_ns", "ns1" ],
"column" : {
"values" : [ "value2" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "value2" ],
"database" : {
"values" : [ "default", "spark_catalog", "iceberg_ns", "ns1" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -813,29 +641,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "bob" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true,
"dataMaskInfo" : {
"dataMaskType" : "MASK"
}
} ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 14,
@ -846,16 +662,15 @@
"name" : "src_value3_sf4",
"policyType" : 1,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog" ],
"column" : {
"values" : [ "value3" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "value3" ],
"database" : {
"values" : [ "default", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -865,29 +680,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "bob" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true,
"dataMaskInfo" : {
"dataMaskType" : "MASK_SHOW_FIRST_4"
}
} ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 15,
@ -898,16 +701,15 @@
"name" : "src_value4_sf4",
"policyType" : 1,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog" ],
"column" : {
"values" : [ "value4" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "value4" ],
"database" : {
"values" : [ "default", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -917,29 +719,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "bob" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true,
"dataMaskInfo" : {
"dataMaskType" : "MASK_DATE_SHOW_YEAR"
}
} ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
}, {
"id" : 16,
@ -950,16 +740,15 @@
"name" : "src_value5_sf4",
"policyType" : 1,
"policyPriority" : 0,
"description" : "",
"isAuditEnabled" : true,
"resources" : {
"database" : {
"values" : [ "default", "spark_catalog" ],
"column" : {
"values" : [ "value5" ],
"isExcludes" : false,
"isRecursive" : false
},
"column" : {
"values" : [ "value5" ],
"database" : {
"values" : [ "default", "spark_catalog" ],
"isExcludes" : false,
"isRecursive" : false
},
@ -969,29 +758,17 @@
"isRecursive" : false
}
},
"conditions" : [ ],
"policyItems" : [ ],
"denyPolicyItems" : [ ],
"allowExceptions" : [ ],
"denyExceptions" : [ ],
"dataMaskPolicyItems" : [ {
"accesses" : [ {
"type" : "select",
"isAllowed" : true
} ],
"users" : [ "bob" ],
"groups" : [ ],
"roles" : [ ],
"conditions" : [ ],
"delegateAdmin" : true,
"dataMaskInfo" : {
"dataMaskType" : "MASK_SHOW_LAST_4"
}
} ],
"rowFilterPolicyItems" : [ ],
"options" : { },
"validitySchedules" : [ ],
"policyLabels" : [ ],
"isDenyAllElse" : false
} ],
"serviceDef" : {
@ -1399,4 +1176,4 @@
"version" : 1
},
"auditMode" : "audit-default"
}
}