You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@sentry.apache.org by "Anne Yu (JIRA)" <ji...@apache.org> on 2015/08/25 23:57:46 UTC
[jira] [Commented] (SENTRY-847) [column level privilege] if grant
column level privilege to user, show columns in table shouldn't require
extra table level privilege
[ https://issues.apache.org/jira/browse/SENTRY-847?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14712049#comment-14712049 ]
Anne Yu commented on SENTRY-847:
--------------------------------
Even with column level privileges, the user can "show columns in test_tb".
> [column level privilege] if grant column level privilege to user, show columns in table shouldn't require extra table level privilege
> -------------------------------------------------------------------------------------------------------------------------------------
>
> Key: SENTRY-847
> URL: https://issues.apache.org/jira/browse/SENTRY-847
> Project: Sentry
> Issue Type: Bug
> Affects Versions: 1.5.1
> Reporter: Anne Yu
> Assignee: guoquan
>
> {code}
> grant select(s) on table test_tb to role test_role;
> show columns in test_tb;
> Error: Error while compiling statement: FAILED: SemanticException No valid privileges
> Required privileges for this query: Server=server1->Db=test_db->Table=test_tb->action=insert;Server=server1->Db=test_db->Table=test_tb->action=select; (state=42000,code=40000)
> {code}
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)