You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hbase.apache.org by "Andrew Purtell (JIRA)" <ji...@apache.org> on 2014/07/09 00:14:05 UTC

[jira] [Resolved] (HBASE-11481) TableSnapshotInputFormat javadoc wrongly claims HBase "enforces security"

     [ https://issues.apache.org/jira/browse/HBASE-11481?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andrew Purtell resolved HBASE-11481.
------------------------------------

       Resolution: Fixed
    Fix Version/s: 2.0.0
                   0.98.4
     Hadoop Flags: Reviewed

Committed doc fix to branches with the affected class: master, branch-1, 0.98

> TableSnapshotInputFormat javadoc wrongly claims HBase "enforces security"
> -------------------------------------------------------------------------
>
>                 Key: HBASE-11481
>                 URL: https://issues.apache.org/jira/browse/HBASE-11481
>             Project: HBase
>          Issue Type: Bug
>            Reporter: Andrew Purtell
>            Assignee: Andrew Purtell
>            Priority: Minor
>             Fix For: 0.99.0, 0.98.4, 2.0.0
>
>         Attachments: HBASE-11481.patch
>
>
> In the Javadoc for TableSnapshotInputFormat, we have this:
> {quote}
> HBase also enforces security because all the requests are handled by the server layer, and the user cannot read from the data files directly.
> {quote}
> The snapshot input format operates on HFiles directly, that's how it gains its performance benefits. No requests are handled by the 'server layer'.
> Later the Javadoc correctly states the implications:
> {quote}
> Note that, given other users access to read from snapshot/data files will completely circumvent the access control enforced by HBase.
> {quote}



--
This message was sent by Atlassian JIRA
(v6.2#6252)