You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by "Alok Lal (JIRA)" <ji...@apache.org> on 2015/06/17 08:57:00 UTC
[jira] [Created] (RANGER-558) Hbase plugin: unless user has READ
access at some level under the table/family being accessed (via scan/get)
authorizer should throw an exception and audit
Alok Lal created RANGER-558:
-------------------------------
Summary: Hbase plugin: unless user has READ access at some level under the table/family being accessed (via scan/get) authorizer should throw an exception and audit
Key: RANGER-558
URL: https://issues.apache.org/jira/browse/RANGER-558
Project: Ranger
Issue Type: Bug
Affects Versions: 0.5.0
Reporter: Alok Lal
Authorizer returns 0 rows today if user has some other type of access (say WRITE) to a column under the table being requested. Further, such attempts are not audited as a denial. This behavior is at odds with that of the hbase standard authorizer. Both of these should be fixed.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)