hive-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Thejas M Nair (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (HIVE-8221) authorize additional metadata read operations in metastore storage based authorization
Date Tue, 30 Sep 2014 22:37:34 GMT

     [ https://issues.apache.org/jira/browse/HIVE-8221?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Thejas M Nair updated HIVE-8221:
--------------------------------
    Release Note: 
Storagebased authorization now authorizes read privilege on database and tables. get_database
api call needs database directory read privilege. get_table_* calls that fetch table information
and get_partition_* calls to list the partitions of a table require read privilege on the
table directory. 
. It is enabled by default with Storagebased authorization. Set hive.security.metastore.authorization.auth.reads=false
to disable this check in storage based authorization.

> authorize additional metadata read operations in metastore storage based authorization

> ---------------------------------------------------------------------------------------
>
>                 Key: HIVE-8221
>                 URL: https://issues.apache.org/jira/browse/HIVE-8221
>             Project: Hive
>          Issue Type: Bug
>          Components: Authorization
>            Reporter: Thejas M Nair
>            Assignee: Thejas M Nair
>            Priority: Blocker
>             Fix For: 0.14.0
>
>         Attachments: HIVE-8221.1.patch, HIVE-8221.2.patch
>
>
> Table and database metadata read operations should also be authorized by storage based
authorization, when enabled in hive metastore.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message