sentry-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Dapeng Sun (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (SENTRY-1067) Exclude capability for privilege("DENY" privilege support)
Date Mon, 22 Feb 2016 07:40:18 GMT

     [ https://issues.apache.org/jira/browse/SENTRY-1067?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Dapeng Sun updated SENTRY-1067:
-------------------------------
    Summary: Exclude capability for privilege("DENY" privilege support)  (was: Exclude capability
for privilege(Deny privilege support))

> Exclude capability for privilege("DENY" privilege support)
> ----------------------------------------------------------
>
>                 Key: SENTRY-1067
>                 URL: https://issues.apache.org/jira/browse/SENTRY-1067
>             Project: Sentry
>          Issue Type: New Feature
>            Reporter: Dapeng Sun
>            Assignee: Dapeng Sun
>              Labels: roadmap
>
> Currently Sentry can only grant privileges to object, in some cases, only some sensitive
data need to be protected. Adding exclude capability can simplify the management of access
control.
> For example, the table "employee" have many columns, the column likes "username", "contact"
and other information can be queried by others,but the column "salary" can only be queried
by specific user.
> With exclude capability, we can grant privilege of table "employee" to user and block
the column "salary".



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message