You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@sentry.apache.org by "SentryQA (JIRA)" <ji...@apache.org> on 2014/06/08 04:15:02 UTC
[jira] [Commented] (SENTRY-212) Restrict access to hive config
property hive.sentry.active.role.set which is set by Sentry Hive binding
[ https://issues.apache.org/jira/browse/SENTRY-212?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14021054#comment-14021054 ]
SentryQA commented on SENTRY-212:
---------------------------------
Here are the results of testing the latest attachment
https://issues.apache.org/jira/secure/attachment/12648845/SENTRY-212.patch against master.
{color:red}Overall:{color} -1 due to 2 errors
{color:red}ERROR:{color} mvn test exited 1
{color:red}ERROR:{color} Failed: org.apache.sentry.provider.db.service.persistent.TestSentryStoreToAuthorizable
Console output: http://bigtop01.cloudera.org:8080/job/PreCommit-SENTRY-Build/106/console
This message is automatically generated.
> Restrict access to hive config property hive.sentry.active.role.set which is set by Sentry Hive binding
> -------------------------------------------------------------------------------------------------------
>
> Key: SENTRY-212
> URL: https://issues.apache.org/jira/browse/SENTRY-212
> Project: Sentry
> Issue Type: Bug
> Affects Versions: 1.4.0
> Reporter: Prasad Mujumdar
> Assignee: Jarek Jarcec Cecho
> Labels: grant/revoke
> Fix For: 1.4.0
>
> Attachments: SENTRY-212.patch
>
>
> The active roles are stored in the hive.sentry.active.role.set property. We should add this config property to HiveServer's restrict list so that it can't be changed outside of auth DDL statements.
--
This message was sent by Atlassian JIRA
(v6.2#6252)