cassandra-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jack Krupansky <jack.krupan...@gmail.com>
Subject Re: DSE 4.7 security
Date Mon, 08 Jun 2015 23:43:20 GMT
Cassandra authorization is at the keyspace and table level. Click on the
GRANT link on the doc page, to get more info:
http://docs.datastax.com/en/cql/3.1/cql/cql_reference/grant_r.html

Which says "*Permissions to access all keyspaces, a named keyspace, or a
table can be granted to a user.*"

There is no finer-grain authorization at the row, column, or cell level.

You might want to open a Jira for this valuable feature.

-- Jack Krupansky

On Sun, Jun 7, 2015 at 5:19 PM, Moshe Kranc <moshekranc@gmail.com> wrote:

> The DSE 4.7 documentation says: You use the familiar relational database
> GRANT/REVOKE paradigm to grant or revoke permissions to
>
> access Cassandra data.
>
> Does this mean authorization is per table?
>
> What if I need finer grain authorization, e.g., per row or even per cell
> (e.g., a specific column in a specific row may not be seen by users in a
> group)?
>
> Do I need to implement this in my application, because Cassandra does not
> support it?
>

Mime
View raw message