You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@sentry.apache.org by "SentryQA (JIRA)" <ji...@apache.org> on 2014/06/08 04:15:02 UTC

[jira] [Commented] (SENTRY-212) Restrict access to hive config property hive.sentry.active.role.set which is set by Sentry Hive binding

    [ https://issues.apache.org/jira/browse/SENTRY-212?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14021054#comment-14021054 ] 

SentryQA commented on SENTRY-212:
---------------------------------

Here are the results of testing the latest attachment
https://issues.apache.org/jira/secure/attachment/12648845/SENTRY-212.patch against master.

{color:red}Overall:{color} -1 due to 2 errors

{color:red}ERROR:{color} mvn test exited 1
{color:red}ERROR:{color} Failed: org.apache.sentry.provider.db.service.persistent.TestSentryStoreToAuthorizable

Console output: http://bigtop01.cloudera.org:8080/job/PreCommit-SENTRY-Build/106/console

This message is automatically generated.

> Restrict access to hive config property hive.sentry.active.role.set which is set by Sentry Hive binding
> -------------------------------------------------------------------------------------------------------
>
>                 Key: SENTRY-212
>                 URL: https://issues.apache.org/jira/browse/SENTRY-212
>             Project: Sentry
>          Issue Type: Bug
>    Affects Versions: 1.4.0
>            Reporter: Prasad Mujumdar
>            Assignee: Jarek Jarcec Cecho
>              Labels: grant/revoke
>             Fix For: 1.4.0
>
>         Attachments: SENTRY-212.patch
>
>
> The active roles are stored in the hive.sentry.active.role.set property. We should add this config property to HiveServer's restrict list so that it can't be changed outside of auth DDL statements.



--
This message was sent by Atlassian JIRA
(v6.2#6252)