hive-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Thejas M Nair (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (HIVE-16497) FileUtils. isActionPermittedForFileHierarchy, isOwnerOfFileHierarchy file system operations should be impersonated
Date Fri, 21 Apr 2017 09:09:04 GMT

     [ https://issues.apache.org/jira/browse/HIVE-16497?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Thejas M Nair updated HIVE-16497:
---------------------------------
    Status: Patch Available  (was: Open)

> FileUtils. isActionPermittedForFileHierarchy, isOwnerOfFileHierarchy file system operations
should be impersonated
> ------------------------------------------------------------------------------------------------------------------
>
>                 Key: HIVE-16497
>                 URL: https://issues.apache.org/jira/browse/HIVE-16497
>             Project: Hive
>          Issue Type: Bug
>          Components: Authorization
>            Reporter: Thejas M Nair
>            Assignee: Thejas M Nair
>             Fix For: 3.0.0
>
>         Attachments: HIVE-16497.1.patch
>
>
> FileUtils.isActionPermittedForFileHierarchy checks if user has permissions for given
action. The checks are made by impersonating the user.
> However, the listing of child dirs are done as the hiveserver2 user. If the hive user
doesn't have permissions on the filesystem, it gives incorrect error that the user doesn't
have permissions to perform the action.
> Impersonating the end user for all file operations in that function is also logically
correct thing to do.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)

Mime
View raw message