Return-Path: X-Original-To: apmail-drill-commits-archive@www.apache.org Delivered-To: apmail-drill-commits-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id E3C63185AF for ; Thu, 2 Jul 2015 00:10:42 +0000 (UTC) Received: (qmail 31056 invoked by uid 500); 2 Jul 2015 00:10:42 -0000 Delivered-To: apmail-drill-commits-archive@drill.apache.org Received: (qmail 31021 invoked by uid 500); 2 Jul 2015 00:10:42 -0000 Mailing-List: contact commits-help@drill.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: commits@drill.apache.org Delivered-To: mailing list commits@drill.apache.org Received: (qmail 31012 invoked by uid 99); 2 Jul 2015 00:10:42 -0000 Received: from git1-us-west.apache.org (HELO git1-us-west.apache.org) (140.211.11.23) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 02 Jul 2015 00:10:42 +0000 Received: by git1-us-west.apache.org (ASF Mail Server at git1-us-west.apache.org, from userid 33) id A4CC2E0449; Thu, 2 Jul 2015 00:10:42 +0000 (UTC) Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 8bit From: bridgetb@apache.org To: commits@drill.apache.org Message-Id: X-Mailer: ASF-Git Admin Mailer Subject: drill-site git commit: 1.1 Edits in Hive Impersonation doc Date: Thu, 2 Jul 2015 00:10:42 +0000 (UTC) Repository: drill-site Updated Branches: refs/heads/asf-site 47760316d -> dd7761be5 1.1 Edits in Hive Impersonation doc Project: http://git-wip-us.apache.org/repos/asf/drill-site/repo Commit: http://git-wip-us.apache.org/repos/asf/drill-site/commit/dd7761be Tree: http://git-wip-us.apache.org/repos/asf/drill-site/tree/dd7761be Diff: http://git-wip-us.apache.org/repos/asf/drill-site/diff/dd7761be Branch: refs/heads/asf-site Commit: dd7761be59f3b8cc952f14c0a54c67ba7de8d694 Parents: 4776031 Author: Bridget Bevens Authored: Wed Jul 1 17:10:30 2015 -0700 Committer: Bridget Bevens Committed: Wed Jul 1 17:10:30 2015 -0700 ---------------------------------------------------------------------- .../index.html | 59 ++++++++++---------- feed.xml | 4 +- 2 files changed, 31 insertions(+), 32 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/drill-site/blob/dd7761be/docs/configuring-user-impersonation-with-hive-authorization/index.html ---------------------------------------------------------------------- diff --git a/docs/configuring-user-impersonation-with-hive-authorization/index.html b/docs/configuring-user-impersonation-with-hive-authorization/index.html index a933ca7..95da12d 100644 --- a/docs/configuring-user-impersonation-with-hive-authorization/index.html +++ b/docs/configuring-user-impersonation-with-hive-authorization/index.html @@ -1090,11 +1090,11 @@ Value: true

hive.metastore.execute.setugi
-Description: Causes the metastore to execute file system operations using the client's reported user and group permissions. You must set this property on both the client and server sides. If client sets it to true and server sets it to false, the client setting is ignored. +Description: Causes the metastore to execute file system operations using the client's reported user and group permissions. You must set this property on both the client and server sides. If client sets it to true and server sets it to false, the client setting is ignored.
Value: true

hive.server2.enable.doAs
-Description: Tells HiveServer2 to execute Hive operations as the user making the calls. +Description: Tells HiveServer2 to execute Hive operations as the user making the calls.
Value: true

Example hive-site.xml Settings for Storage Based Authorization

@@ -1138,7 +1138,7 @@

hive.security.authenticator.manager
Description: Class that implements HiveAuthenticationProvider to provide the client’s username and groups.
-Value: Set to:org.apache.hadoop.hive.ql.security.SessionStateUserAuthenticator

+Value: org.apache.hadoop.hive.ql.security.SessionStateUserAuthenticator

hive.security.authorization.manager
Description: The Hive client authorization manager class name.
@@ -1214,35 +1214,34 @@ } } +

For SQL standard based authorization, add the following settings:

  {
+   type:"hive",
+   enabled: true,
+   configProps : {
+     "hive.metastore.uris"
+  : "thrift://<metastore_host>:<port>",
+     "fs.default.name"
+  : "hdfs://<host>:<port>/",
+     "hive.security.authorization.enabled"
+  : "true",
+     "hive.security.authenticator.manager"
+  : "org.apache.hadoop.hive.ql.security.SessionStateUserAuthenticator",
+     "hive.security.authorization.manager"
+  :
+  "org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory",
+     "hive.metastore.sasl.enabled"
+  : "false",
+     "hive.server2.enable.doAs"
+  : "false",
+     "hive.metastore.execute.setugi"
+  : "false"
+   }
+  }
+

   * For SQL standard based authorization, add the following settings:  
-
-
-          {
-           type:"hive",
-           enabled: true,
-           configProps : {
-             "hive.metastore.uris"
-          : "thrift://<metastore_host>:<port>",
-             "fs.default.name"
-          : "hdfs://<host>:<port>/",
-             "hive.security.authorization.enabled"
-          : "true",
-             "hive.security.authenticator.manager"
-          : "org.apache.hadoop.hive.ql.security.SessionStateUserAuthenticator",
-             "hive.security.authorization.manager"
-          :
-          "org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory",
-             "hive.metastore.sasl.enabled"
-          : "false",
-             "hive.server2.enable.doAs"
-          : "false",
-             "hive.metastore.execute.setugi"
-          : "false"
-           }
-          }
-

http://git-wip-us.apache.org/repos/asf/drill-site/blob/dd7761be/feed.xml ---------------------------------------------------------------------- diff --git a/feed.xml b/feed.xml index 0e1f791..aac9dde 100644 --- a/feed.xml +++ b/feed.xml @@ -6,8 +6,8 @@ / - Wed, 01 Jul 2015 16:49:25 -0700 - Wed, 01 Jul 2015 16:49:25 -0700 + Wed, 01 Jul 2015 17:07:07 -0700 + Wed, 01 Jul 2015 17:07:07 -0700 Jekyll v2.5.2