hive-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Thejas M Nair (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HIVE-6093) table creation should fail when user does not have permissions on db
Date Fri, 15 Aug 2014 01:27:18 GMT

    [ https://issues.apache.org/jira/browse/HIVE-6093?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14098031#comment-14098031
] 

Thejas M Nair commented on HIVE-6093:
-------------------------------------

+1

> table creation should fail when user does not have permissions on db
> --------------------------------------------------------------------
>
>                 Key: HIVE-6093
>                 URL: https://issues.apache.org/jira/browse/HIVE-6093
>             Project: Hive
>          Issue Type: Bug
>          Components: Authorization, HCatalog, Metastore
>    Affects Versions: 0.12.0, 0.13.0
>            Reporter: Thiruvel Thirumoolan
>            Assignee: Thiruvel Thirumoolan
>            Priority: Minor
>              Labels: authorization, metastore, security
>             Fix For: 0.14.0
>
>         Attachments: HIVE-6093-1.patch, HIVE-6093.patch
>
>
> Its possible to create a table under a database where the user does not have write permission.
It can be done by specifying a LOCATION where the user has write access (say /tmp/foo). This
should be restricted.
> HdfsAuthorizationProvider (which typically runs on client) checks the database directory
during table creation. But StorageBasedAuthorizationProvider does not.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message