hbase-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andrew Purtell (JIRA)" <j...@apache.org>
Subject [jira] [Created] (HBASE-11481) TableSnapshotInputFormat javadoc wrongly claims HBase "enforces security"
Date Tue, 08 Jul 2014 20:54:08 GMT
Andrew Purtell created HBASE-11481:
--------------------------------------

             Summary: TableSnapshotInputFormat javadoc wrongly claims HBase "enforces security"
                 Key: HBASE-11481
                 URL: https://issues.apache.org/jira/browse/HBASE-11481
             Project: HBase
          Issue Type: Bug
            Reporter: Andrew Purtell
            Assignee: Andrew Purtell
             Fix For: 0.99.0


In the Javadoc for TableSnapshotInputFormat, we have this:
{quote}
HBase also enforces security because all the requests are handled by the server layer, and
the user cannot read from the data files directly.
{quote}

The snapshot input format operates on HFiles directly, that's how it gains its performance
benefits. No requests are handled by the 'server layer'.

Later the Javadoc correctly states the implications:
{quote}
Note that, given other users access to read from snapshot/data files will completely circumvent
the access control enforced by HBase.
{quote}



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message