Management of entity roles (dot roles) in the Sentry extension should be a convenience, not a requirement
Description
The Sentry extension accepts a property called sentry.admin.users that is used to create and manage the lifecycle of a dot role. This role is necessary to grant permissions to the creator of an entity, and removed when the entity is deleted. Although this is a nice convenience, it should not be mandatory, since users may want to manage ACLs via superusers separately. They may want to skip this convenience step since it may appear as a security hazard. As a result, the sentry extension should use this property and provide the convenience it gives if the users choose to configure it. However, it should just skip this step should the users choose not to provide this group.
The Sentry extension accepts a property called
sentry.admin.usersthat is used to create and manage the lifecycle of a dot role. This role is necessary to grant permissions to the creator of an entity, and removed when the entity is deleted. Although this is a nice convenience, it should not be mandatory, since users may want to manage ACLs via superusers separately. They may want to skip this convenience step since it may appear as a security hazard. As a result, the sentry extension should use this property and provide the convenience it gives if the users choose to configure it. However, it should just skip this step should the users choose not to provide this group.