You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@ranger.apache.org by "Ramesh Mani (JIRA)" <ji...@apache.org> on 2016/10/24 19:42:58 UTC

[jira] [Updated] (RANGER-1126) Authorization checks for non existent file/directory should not be recursive in Ranger Hive authorizer

     [ https://issues.apache.org/jira/browse/RANGER-1126?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Ramesh Mani updated RANGER-1126:
--------------------------------
    Fix Version/s: 0.7.0

> Authorization checks for non existent file/directory should not be recursive in Ranger Hive authorizer
> ------------------------------------------------------------------------------------------------------
>
>                 Key: RANGER-1126
>                 URL: https://issues.apache.org/jira/browse/RANGER-1126
>             Project: Ranger
>          Issue Type: Bug
>          Components: plugins
>    Affects Versions: 0.5.0, 0.6.0
>            Reporter: Madhan Neethiraj
>            Assignee: Ramesh Mani
>             Fix For: 0.7.0
>
>         Attachments: RANGER-1126.patch
>
>
> When the file path specified in Hive statements like 'create external table' does not exists, Ranger Hive authorizer checks for permissions in all child objects of the given path's parent directory. This can be error prone and also if the parent directory contains a large number of files/directories, this can be an expensive.
> This issue was fixed in Hive SQLStd authorizer in HIVE-10022. Ranger Hive authorizer should be updated similarly.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)