You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@hive.apache.org by "Sergey (JIRA)" <ji...@apache.org> on 2014/04/07 11:52:17 UTC
[jira] [Commented] (HIVE-6245) HS2 creates DBs/Tables with wrong
ownership when HMS setugi is true
[ https://issues.apache.org/jira/browse/HIVE-6245?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13961755#comment-13961755 ]
Sergey commented on HIVE-6245:
------------------------------
We do run ALTER TABLE ADD PARTITION ... LOCATION 'hdfs://bla-bla' through JDBC as oozie-java-action. Sometimes it works, sometimes it doesn't work. HiveServer2 'looses' passed username and sets username='anonymous' and refuses to add partition because user named 'anonymous' has no access right to partition location.
Whe does it happen from time to time? For example we have an oozie coordinator which adds 24 partitions during a day. It can work for a week and then suddenly fails with this 'anonymous' user.
> HS2 creates DBs/Tables with wrong ownership when HMS setugi is true
> -------------------------------------------------------------------
>
> Key: HIVE-6245
> URL: https://issues.apache.org/jira/browse/HIVE-6245
> Project: Hive
> Issue Type: Bug
> Components: HiveServer2
> Affects Versions: 0.12.0
> Reporter: Chaoyu Tang
> Assignee: Chaoyu Tang
> Attachments: HIVE-6245.patch
>
>
> The case with following settings is valid but does not work correctly in current HS2:
> ==
> hive.server2.authentication=NONE (or LDAP)
> hive.server2.enable.doAs= true
> hive.metastore.sasl.enabled=false
> hive.metastore.execute.setugi=true
> ==
> Ideally, HS2 is able to impersonate the logged in user (from Beeline, or JDBC application) and create DBs/Tables with user's ownership.
--
This message was sent by Atlassian JIRA
(v6.2#6252)