Return-Path: 
 <issues-return-46882-apmail-spark-issues-archive=spark.apache.org@spark.apache.org>
X-Original-To: apmail-spark-issues-archive@minotaur.apache.org
Delivered-To: apmail-spark-issues-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id E309318F82
	for <apmail-spark-issues-archive@minotaur.apache.org>;
 Tue,  2 Jun 2015 07:24:40 +0000 (UTC)
Received: (qmail 30994 invoked by uid 500); 2 Jun 2015 07:24:40 -0000
Delivered-To: apmail-spark-issues-archive@spark.apache.org
Received: (qmail 30968 invoked by uid 500); 2 Jun 2015 07:24:40 -0000
Mailing-List: contact issues-help@spark.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:issues-help@spark.apache.org>
List-Unsubscribe: <mailto:issues-unsubscribe@spark.apache.org>
List-Post: <mailto:issues@spark.apache.org>
List-Id: <issues.spark.apache.org>
Delivered-To: mailing list issues@spark.apache.org
Received: (qmail 30959 invoked by uid 99); 2 Jun 2015 07:24:40 -0000
Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 02 Jun 2015 07:24:40 +0000
Date: Tue, 2 Jun 2015 07:24:40 +0000 (UTC)
From: "nilone (JIRA)" <jira@apache.org>
To: issues@spark.apache.org
Message-ID: <JIRA.12834501.1433229817000.91480.1433229880279@Atlassian.JIRA>
In-Reply-To: <JIRA.12834501.1433229817000@Atlassian.JIRA>
References: <JIRA.12834501.1433229817000@Atlassian.JIRA>
 <JIRA.12834501.1433229817573@arcas>
Subject: [jira] [Created] (SPARK-8034) spark-sql security authorization bug
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: quoted-printable
X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394

nilone created SPARK-8034:
-----------------------------

             Summary: spark-sql security authorization bug
                 Key: SPARK-8034
                 URL: https://issues.apache.org/jira/browse/SPARK-8034
             Project: Spark
          Issue Type: Bug
          Components: Build
    Affects Versions: 1.3.1, 1.3.0, 1.2.1
            Reporter: nilone


I Try to use beeline to access thrift jdbc server for authorization test, a=
nd these params have added to the hive-site.xml :
--------------------------------------------------------------------------
hive.security.authorization.enabled : true=20
hive.security.authorization.createtable.owner.grants =EF=BC=9A select,alter=
,drop
--------------------------------------------------------------------------

1=E3=80=81cannot control select privilege : anyone can select any table cre=
ated by other users,=EF=BC=88all for spark1.1,spark1.2,spark1.3)
2=E3=80=81when create table under different beeline client with different u=
ser name,  the server write wrong owner name into the hive metastore table =
'TBLS',  always write the name who  is the first one make the create table =
operation .and cannot control drop ,alter privilege between users.
(this bug is for version after spark1.2, spark1.1 is ok, )



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@spark.apache.org
For additional commands, e-mail: issues-help@spark.apache.org