You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "Madhan Neethiraj (JIRA)" <ji...@apache.org> on 2016/07/27 04:31:20 UTC

[jira] [Created] (RANGER-1126) Authorization checks for non existent file/directory should not be recursive in Ranger Hive authorizer

Madhan Neethiraj created RANGER-1126:
----------------------------------------

             Summary: Authorization checks for non existent file/directory should not be recursive in Ranger Hive authorizer
                 Key: RANGER-1126
                 URL: https://issues.apache.org/jira/browse/RANGER-1126
             Project: Ranger
          Issue Type: Bug
          Components: plugins
    Affects Versions: 0.6.0, 0.5.0
            Reporter: Madhan Neethiraj


When the file path specified in Hive statements like 'create external table' does not exists, Ranger Hive authorizer checks for permissions in all child objects of the given path's parent directory. This can be error prone and also if the parent directory contains a large number of files/directories, this can be an expensive.

This issue was fixed in Hive SQLStd authorizer in HIVE-10022. Ranger Hive authorizer should be updated similarly.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)