You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@sentry.apache.org by "Na Li (JIRA)" <ji...@apache.org> on 2018/03/06 21:49:00 UTC
[jira] [Created] (SENTRY-2152) Only Admin can set dbproperty
'owner.privileges'
Na Li created SENTRY-2152:
-----------------------------
Summary: Only Admin can set dbproperty 'owner.privileges'
Key: SENTRY-2152
URL: https://issues.apache.org/jira/browse/SENTRY-2152
Project: Sentry
Issue Type: Sub-task
Components: Sentry
Affects Versions: 2.1.0
Reporter: Na Li
Fix For: 2.1.0
Right now, anyone can set database property. We should add authorization when setting dbproperty 'owner.privileges' from hive, so only admin can do it.
The allowed values are: none, all, all with grant
For example, when a non-admin user issues command
{code:java}
alter database db1 set dbproperty('owner.privileges'='all with grant')
{code}
The command should fail and the error message indicating the user does not have right to set this value.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)