You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@hive.apache.org by "Alex Nastetsky (JIRA)" <ji...@apache.org> on 2014/03/12 17:55:44 UTC
[jira] [Commented] (HIVE-3009) do authorization for all metadata
operations
[ https://issues.apache.org/jira/browse/HIVE-3009?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13931984#comment-13931984 ]
Alex Nastetsky commented on HIVE-3009:
--------------------------------------
Hi, are there still plans to fix this ticket? It is creating a security concern in our scenario where we have different databases for each customer but any user can do "show tables" in any database. Thanks.
> do authorization for all metadata operations
> --------------------------------------------
>
> Key: HIVE-3009
> URL: https://issues.apache.org/jira/browse/HIVE-3009
> Project: Hive
> Issue Type: Bug
> Components: Authorization, Metastore
> Reporter: Thejas M Nair
> Assignee: Vandana Ayyalasomayajula
>
> Most of the metadata read operations and some write operations are not checking for authorization.
> See org.apache.hadoop.hive.ql.plan.HiveOperation . Operations such as DESCTABLE and DROPDATABASE have null for required privileges.
--
This message was sent by Atlassian JIRA
(v6.2#6252)