You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "Alok Lal (JIRA)" <ji...@apache.org> on 2015/06/17 08:57:00 UTC

[jira] [Created] (RANGER-558) Hbase plugin: unless user has READ access at some level under the table/family being accessed (via scan/get) authorizer should throw an exception and audit

Alok Lal created RANGER-558:
-------------------------------

             Summary: Hbase plugin: unless user has READ access at some level under the table/family being accessed (via scan/get) authorizer should throw an exception and audit
                 Key: RANGER-558
                 URL: https://issues.apache.org/jira/browse/RANGER-558
             Project: Ranger
          Issue Type: Bug
    Affects Versions: 0.5.0
            Reporter: Alok Lal


Authorizer returns 0 rows today if user has some other type of access (say WRITE) to a column under the table being requested.  Further, such attempts are not audited as a denial.  This behavior is at odds with that of the hbase standard authorizer.  Both of these should be fixed.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)