Return-Path: 
 <dev-return-95768-apmail-hive-dev-archive=hive.apache.org@hive.apache.org>
X-Original-To: apmail-hive-dev-archive@www.apache.org
Delivered-To: apmail-hive-dev-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 8D95411E69
	for <apmail-hive-dev-archive@www.apache.org>;
 Mon,  4 Aug 2014 19:20:17 +0000 (UTC)
Received: (qmail 30575 invoked by uid 500); 4 Aug 2014 19:20:17 -0000
Delivered-To: apmail-hive-dev-archive@hive.apache.org
Received: (qmail 30505 invoked by uid 500); 4 Aug 2014 19:20:17 -0000
Mailing-List: contact dev-help@hive.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@hive.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@hive.apache.org>
List-Post: <mailto:dev@hive.apache.org>
List-Id: <dev.hive.apache.org>
Reply-To: dev@hive.apache.org
Delivered-To: mailing list dev@hive.apache.org
Received: (qmail 30493 invoked by uid 500); 4 Aug 2014 19:20:16 -0000
Delivered-To: apmail-hadoop-hive-dev@hadoop.apache.org
Received: (qmail 30490 invoked by uid 99); 4 Aug 2014 19:20:16 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 04 Aug 2014 19:20:16 +0000
Date: Mon, 4 Aug 2014 19:20:16 +0000 (UTC)
From: "Thejas M Nair (JIRA)" <jira@apache.org>
To: hive-dev@hadoop.apache.org
Message-ID: <JIRA.12731231.1406852268003.9759.1407180016872@arcas>
In-Reply-To: <JIRA.12731231.1406852268003@arcas>
References: <JIRA.12731231.1406852268003@arcas>
Subject: [jira] [Commented] (HIVE-7583) Use FileSystem.access() if available
 to check file access for user
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394


    [ https://issues.apache.org/jira/browse/HIVE-7583?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14085143#comment-14085143 ] 

Thejas M Nair commented on HIVE-7583:
-------------------------------------

+1

> Use FileSystem.access() if available to check file access for user
> ------------------------------------------------------------------
>
>                 Key: HIVE-7583
>                 URL: https://issues.apache.org/jira/browse/HIVE-7583
>             Project: Hive
>          Issue Type: Bug
>            Reporter: Jason Dere
>            Assignee: Jason Dere
>         Attachments: HIVE-7583.1.patch, HIVE-7583.2.patch
>
>
> Hive currently implements its own file access checks to determine if a user is allowed to perform an specified action on a file path (in StorageBasedAuthorizationProvider, also FileUtils). This can be prone to errors or inconsistencies with how file access is actually checked in Hadoop.
> HDFS-6570 adds a new FileSystem.access() API, so that we can perform the check using the actual HDFS logic rather than having to imitate that behavior in Hive. For versions of Hadoop that have this API available, we should use this API.



--
This message was sent by Atlassian JIRA
(v6.2#6252)