You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hive.apache.org by "Thejas M Nair (JIRA)" <ji...@apache.org> on 2014/07/12 00:13:08 UTC

[jira] [Updated] (HIVE-7361) using authorization api for RESET, DFS, ADD, DELETE, COMPILE commands

     [ https://issues.apache.org/jira/browse/HIVE-7361?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Thejas M Nair updated HIVE-7361:
--------------------------------

    Summary: using authorization api for RESET, DFS, ADD, DELETE, COMPILE commands  (was: using authorization api for SET, RESET, DFS, ADD, DELETE, COMPILE commands)

> using authorization api for RESET, DFS, ADD, DELETE, COMPILE commands
> ---------------------------------------------------------------------
>
>                 Key: HIVE-7361
>                 URL: https://issues.apache.org/jira/browse/HIVE-7361
>             Project: Hive
>          Issue Type: Bug
>          Components: Authorization
>            Reporter: Thejas M Nair
>            Assignee: Thejas M Nair
>
> The only way to disable the commands SET, RESET, DFS, ADD, DELETE and COMPILE that is available currently is to use the hive.security.command.whitelist parameter.
> Some of these commands are disabled using this configuration parameter for security reasons when SQL standard authorization is enabled. However, it gets disabled in all cases.
> If authorization api is used authorize the use of these commands, it will give authorization implementations the flexibility to allow/disallow these commands based on user privileges.



--
This message was sent by Atlassian JIRA
(v6.2#6252)