You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@sentry.apache.org by "Prasad Mujumdar (JIRA)" <ji...@apache.org> on 2015/03/31 19:17:53 UTC

[jira] [Created] (SENTRY-687) Handle authorization for 'select ' hive queries

Prasad Mujumdar created SENTRY-687:
--------------------------------------

             Summary: Handle authorization for 'select <expr>' hive queries
                 Key: SENTRY-687
                 URL: https://issues.apache.org/jira/browse/SENTRY-687
             Project: Sentry
          Issue Type: Bug
            Reporter: Prasad Mujumdar


Hive internally rewrites this 'select <expression>' query into 'select <expression> from _dummy_database._dummy_table', where these dummy db and table are temp entities for the current query.
The Hive binding need to handle these special objects. 
Perhaps a long term solution would be for Hive compiler to identify the special objects which the auth plugins should skip. In short term we can just allow access to "_dummy_database" implicitly.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)