| --- |
| template: home.html |
| title: Apache Ranger - the open source authz framework for data processing services |
| hide: |
| - toc |
| - navigation |
| - feedback |
| --- |
| <!--- |
| Licensed to the Apache Software Foundation (ASF) under one or more |
| contributor license agreements. See the NOTICE file distributed with |
| this work for additional information regarding copyright ownership. |
| The ASF licenses this file to You under the Apache License, Version 2.0 |
| (the "License"); you may not use this file except in compliance with |
| the License. You may obtain a copy of the License at |
| |
| http://www.apache.org/licenses/LICENSE-2.0 |
| |
| Unless required by applicable law or agreed to in writing, software |
| distributed under the License is distributed on an "AS IS" BASIS, |
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| See the License for the specific language governing permissions and |
| limitations under the License. |
| --> |
| |
| # Goals Overview |
| |
| - Centralized security administration to manage all authorization related tasks in a central UI or using REST APIs. |
| - Fine-grained authorization to do a specific action and/or operation with 20+ data processing services and managed through a central administration tool. |
| - Standardized authorization method across different data processing services. |
| - Enhanced support for different authorization methods like: |
| - Role based access control (RBAC) |
| - Attribute based access control (ABAC) |
| - Tag based access control (TBAC) |
| - Centralized auditing of user access and administrative actions (security related) for all services. |
