You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@sentry.apache.org by "Alexander Kolbasov (JIRA)" <ji...@apache.org> on 2018/02/02 20:04:00 UTC

[jira] [Commented] (SENTRY-2140) Tag based access control

    [ https://issues.apache.org/jira/browse/SENTRY-2140?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16350882#comment-16350882 ] 

Alexander Kolbasov commented on SENTRY-2140:
--------------------------------------------

Is it a Sentry request or Hive request or both?

Do you propose to tag columns using some kind of new Hive syntax or something else? What are these tags and how do they relate to privileges? Does this require some kind of user-level privileges? What objects do you want to tag - just columns or something else?

> Tag based access control
> ------------------------
>
>                 Key: SENTRY-2140
>                 URL: https://issues.apache.org/jira/browse/SENTRY-2140
>             Project: Sentry
>          Issue Type: New Feature
>          Components: Core
>            Reporter: Steve Moist
>            Priority: Major
>
> As a user, I want to have finer grain control over which users/roles can view data in Hive.  Some information such as Social Security Number is considered very confidential information.  I want to be able to tag columns in Hive with "tags" that prevent users/roles from not accessing or seeing the data.  For users/roles that have that tag, they should be able to see that information.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)