You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@sentry.apache.org by "Zhihua Deng (Jira)" <ji...@apache.org> on 2020/11/21 01:03:00 UTC
[jira] [Commented] (SENTRY-2566) Output failed privileges when
HiveAuthzBinding throws AuthorizationException
[ https://issues.apache.org/jira/browse/SENTRY-2566?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17236553#comment-17236553 ]
Zhihua Deng commented on SENTRY-2566:
-------------------------------------
[~kalyan] could you please take a look? thanks in advance!
> Output failed privileges when HiveAuthzBinding throws AuthorizationException
> ----------------------------------------------------------------------------
>
> Key: SENTRY-2566
> URL: https://issues.apache.org/jira/browse/SENTRY-2566
> Project: Sentry
> Issue Type: Improvement
> Reporter: Zhihua Deng
> Priority: Major
> Attachments: SENTRY-2566.001.patch
>
>
> When using MetastoreAuthzBindingBase to authorize meta changes like creating tables, if user does not have the right privileges, the hive client gets the error message like this:
> {noformat}
> User u_dengzhihua does not have privileges for CREATETABLE{noformat}
> It's not easy for the user to figure out what privileges are missing. We should output the failed message like the DefaultSentryValidator does, the message would be like this:
> {noformat}
> User u_dengzhihua does not have privileges Server=server1->Db=test->action=create for CREATETABLE{noformat}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)