You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@kylin.apache.org by "qingquanzhang (Jira)" <ji...@apache.org> on 2022/01/12 07:43:00 UTC

[jira] [Commented] (KYLIN-5154) Table level permissions not working?

    [ https://issues.apache.org/jira/browse/KYLIN-5154?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17474324#comment-17474324 ] 

qingquanzhang commented on KYLIN-5154:
--------------------------------------

Now I understand,Kylin can push down any Hive table without permission control:(

> Table level permissions not working?
> ------------------------------------
>
>                 Key: KYLIN-5154
>                 URL: https://issues.apache.org/jira/browse/KYLIN-5154
>             Project: Kylin
>          Issue Type: Bug
>    Affects Versions: v4.0.1
>            Reporter: qingquanzhang
>            Priority: Major
>
> This is a table-level permission control issue.
> When I have multiple tables A,B,C,D,E,F in A project... User1 has access to only table A, and user1 can only see table A on the Insight TAB. But when User1 clicks Model-->Data Source, he can see all the tables and details. In addition, when push Down is enabled, he can directly query the detailed contents of these tables regardless of whether he has the permission of these tables. He can even query any other table in Hive.
> I wonder if this is normal? For some sensitive data, this should not be the case



--
This message was sent by Atlassian Jira
(v8.20.1#820001)