You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@hive.apache.org by "Thejas Nair (Jira)" <ji...@apache.org> on 2020/05/01 21:39:00 UTC

[jira] [Commented] (HIVE-23352) More user friendly StorageAuthorizationProvider log messages

    [ https://issues.apache.org/jira/browse/HIVE-23352?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17097685#comment-17097685 ] 

Thejas Nair commented on HIVE-23352:
------------------------------------

[~pgaref]

That is the intended behavior of SBA with external tables as well. Ie, authorize metadata access based on file permissions. Sure we would improve the error/log messages. What change are you suggesting ?

> More user friendly StorageAuthorizationProvider log messages
> ------------------------------------------------------------
>
>                 Key: HIVE-23352
>                 URL: https://issues.apache.org/jira/browse/HIVE-23352
>             Project: Hive
>          Issue Type: Improvement
>          Components: Security
>    Affects Versions: 4.0.0
>            Reporter: Panagiotis Garefalakis
>            Priority: Minor
>
> Currently *StorageBasedAuthorizationProvider* returns messages (like below) about data paths even for _External_ tables where a drop command would just remove metadata. Lets make those messages more user-friendly.
> {code:java}
> Permission Denied: User hive can't delete hdfs://XXX.com:8020/tmp/testuser because sticky bit is set on the parent dir and user does not own this file or its parent)
> {code}



--
This message was sent by Atlassian Jira
(v8.3.4#803005)