Release 9.0.7.1¶
This is the Rolling Release Notes for the Release 9.0.7.1. This release notes are applicable only to Privacera's Self Managed version.
Breaking Changes¶
Simplified EMR Delta Configurations
Simplified EMR Delta configurations by removing explicit Delta Jar dependencies. You can now use both Delta and Iceberg in the same EMR FGAC and OLAC clusters without explicit configuration of jar versions.
Warning
You must update your EMR template, as older templates are not supported after the upgrade.
Retention of audits stored in Apache Solr is defaulted to 90 days
In Self-Managed deployments, audit logs older than 90 days are purged automatically. You can adjust this retention period as needed. Refer to below release notes for more details.
Apache Ranger¶
Customizable Retention for Ranger Audit Logs in Solr
Customizable Retention for Ranger Audit Logs in Solr¶
In Self-Managed deployments, Apache Solr is used to store ranger access audits. From version 9.0.7.1, the default retention period for Ranger audit logs is set to 90 days.
You can adjust this retention period as needed. For instructions on how to configure the retention period for Ranger audit logs in Solr, refer to Configuring Retention for Ranger Audits in Solr.
Warning
- Retention period for audit logs must be set before initiating the upgrade.
- To purge historical audit logs generated before the upgrade, you need to delete them manually. For instructions on how to delete them, refer to Purging Historical Ranger Audits.
Spark Plugin¶
Fixed Spark SQL Join Queries for Spark 3.3.x and Above
Fixed Spark SQL Join Queries for Spark 3.3.x and Above¶
Resolved the Spark SQL join queries for EMR, OSS, and Databricks for Spark 3.3.x and above.
EMR Serverless: Externalized privacera_spark.properties
EMR Serverless: Externalized privacera_spark.properties¶
Sensitive values have been excluded from the EMR Serverless Docker image. These values can now be securely configured using AWS Secrets Manager.
To know how to configure sensitive values, see Configuring externalizing the sensitive values of privacera properties.
Fixed Extra Denied Access Checks for _delta_log Files
Fixed Extra Denied Access Checks for _delta_log Files¶
Implemented a fix to address the issue of extra denied access checks that were occurring for _delta_log files generated within OLAC clusters during delta file read operations.
Support for FGAC and OLAC in EMR/EMR Serverless
Support for FGAC and OLAC in EMR/EMR Serverless¶
Added support for enabling both FGAC and OLAC spark plugins in the same EMR cluster. This enhancement enables SQL and file-level access control for Delta, Iceberg, Parquet, and CSV file formats.
To know more, see Enable FGAC and OLAC Plugins in EMR Cluster or Enable FGAC and OLAC Plugins in EMR Serverless
Resolved Read Access Check for S3A Protocol in OLAC EMR Serverless Clusters
Resolved Read Access Check for S3A Protocol in OLAC EMR Serverless Clusters¶
Fixed issues with read access check for target table location using the S3A protocol in OLAC EMR Serverless clusters.
DataServer¶
Improved Error Handling for Non-Existent S3 Location
Improved Error Handling for Non-Existent S3 Location¶
Improved error handling for creating a database or table on non-existing S3 paths from EMR Spark in HMS by correctly parsing the AWS S3 response and returning the appropriate message to the EMR plugin.
PolicySync Connector¶
Enhanced Schema Grant Reliability for Unity Catalog in JDBC Mode
Enhanced Schema Grant Reliability for Unity Catalog in JDBC Mode¶
Fixed an issue in the Unity Catalog connector's JDBC mode that led to failures in implicit schema grants due to incorrect SQL grant statement formation.
Improved Stability for Unity Catalog User Grants
Improved Stability for Unity Catalog User Grants¶
Resolved an issue where token user grants in Unity Catalog were being unexpectedly revoked and re-granted repeatedly. Grants for token users are now stable and maintained as expected without unnecessary revocations.
- Prev topic: Releases