You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@spark.apache.org by "nilone (JIRA)" <ji...@apache.org> on 2015/06/02 09:22:20 UTC

[jira] [Created] (SPARK-8033) spark-sql thriftserver security authorization bugs!

nilone created SPARK-8033:
-----------------------------

             Summary: spark-sql thriftserver security authorization bugs!
                 Key: SPARK-8033
                 URL: https://issues.apache.org/jira/browse/SPARK-8033
             Project: Spark
          Issue Type: Bug
          Components: Build
    Affects Versions: 1.3.1, 1.3.0, 1.2.1
            Reporter: nilone


I Try to use beeline to access thrift jdbc server for authorization test, and these params have added to the hive-site.xml :
--------------------------------------------------------------------------
hive.security.authorization.enabled : true 
hive.security.authorization.createtable.owner.grants ： select,alter,drop
--------------------------------------------------------------------------

1、cannot control select privilege : anyone can select any table created by other users,（all for spark1.1,spark1.2,spark1.3)
2、when create table under different beeline client with different user name,  the server write wrong owner name into the hive metastore table 'TBLS',  always write the name who  is the first one make the create table operation .and cannot control drop ,alter privilege between users.
(this bug is for version after spark1.2, spark1.1 is ok, )



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@spark.apache.org
For additional commands, e-mail: issues-help@spark.apache.org