phoenix-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Maica Bisaya (JIRA)" <j...@apache.org>
Subject [jira] [Created] (PHOENIX-3985) Phoenix SQuirrel log in allows non-existing users/wrong passwords and can query
Date Fri, 30 Jun 2017 07:16:00 GMT
Maica Bisaya created PHOENIX-3985:
-------------------------------------

             Summary: Phoenix SQuirrel log in allows non-existing users/wrong passwords and
can query
                 Key: PHOENIX-3985
                 URL: https://issues.apache.org/jira/browse/PHOENIX-3985
             Project: Phoenix
          Issue Type: Bug
         Environment: Operating System = Ubuntu 14.04.5
Software platform = Hortonworks Hadoop Platform
            Reporter: Maica Bisaya
            Priority: Critical


Any user (existing or non existing), also user with wrong password can log in and run an sql
query via Phoenix Squirrel. Meaning there's no access limitation. Please check on this for
version 3.7



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message