Skip to content

Ranger 2.7.0 Release Notes

Released July 30, 2025

The release is certified with these versions of the various components:

  • Java 8
  • Python 3.10.12
  • Databases [Ranger and Ranger KMS]:
    • MariaDB :fontawesome-simple-mariadb: 10.7.3
    • Postgres: 12
    • Oracle: 23.6
  • Apache Solr: 8.11.3

Release Highlights

Key Updates

RANGER-5208: Refactor audit module to move each destination implementation to a separate module
RANGER-5113: DELETE multiple policies with a wildcard via API call
RANGER-5102: Add config param for writing audits to HDFS in append mode
RANGER-5241 RANGER-5166 RANGER-5167 RANGER-5158: Docker Setup Improvements

Key Fixes

RANGER-5202: Tag deny policy is not getting enforced on scan table command for hbase
RANGER-5224: dedupTags removes the valid tags while deduplicating tags
RANGER-5154: Fix failure in deleting records from x_auth_sess table

Breaking Changes

  • Library ranger-plugins-audit is not available starting with Apache Ranger 2.7.0 release. Contents of this library are split into multiple libraries, one for each audit destination. This enables plugin implementations to minimize dependencies by including libraries only for the destinations they need. Plugin implementations should replace references to ranger-plugins-audit with audit destination specific library's listed below:
    • ranger-audit-dest-cloudwatch
    • ranger-audit-dest-es
    • ranger-audit-dest-hdfs
    • ranger-audit-dest-kafka
    • ranger-audit-dest-log4j
    • ranger-audit-dest-solr
  • Authorization plugin packages in Apache Ranger 2.7.0 include dependent libraries for two audit destinations only – Solr and HDFS. In earlier versions of Apache Ranger, plugin packages included libraries for all available audit destinations, like AWS CloudWatch, Elasticsearch, Kafka, Log4j. If support for other audit destinations is needed, it will be necessary to rebuild the plugin package after updating pom and packaging files of the plugin.