You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@ranger.apache.org by "Selvamohan Neethiraj (JIRA)" <ji...@apache.org> on 2016/07/11 15:48:11 UTC
[jira] [Commented] (RANGER-930) Restricting Table names with the
"Update" permission for HIVE does not work
[ https://issues.apache.org/jira/browse/RANGER-930?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15371018#comment-15371018 ]
Selvamohan Neethiraj commented on RANGER-930:
---------------------------------------------
As this issue needs work from Apache Hive Component, moving out to next release. Work-around in the above comment should be used to fix this issue in the current release.
> Restricting Table names with the "Update" permission for HIVE does not work
> ---------------------------------------------------------------------------
>
> Key: RANGER-930
> URL: https://issues.apache.org/jira/browse/RANGER-930
> Project: Ranger
> Issue Type: Bug
> Components: plugins
> Affects Versions: 0.6.0
> Reporter: Colm O hEigeartaigh
> Assignee: Madhan Neethiraj
> Priority: Critical
> Fix For: 0.6.0
>
>
> If I create a Ranger policy for a specific Table with "SELECT" + "UPDATE" permissions, the user can't actually invoke an "insert" query in HIVE, e.g.:
> H110 Unable to submit statement. Error while compiling statement: FAILED: HiveAccessControlException Permission denied: user [colm] does not have [SELECT] privilege on [default/values__tmp__table__3/tmp_values_col1,tmp_values_col2] [ERROR_STATUS]
> It looks like there is an issue with access verification for temporary tables.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)