You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@sentry.apache.org by "Na Li (JIRA)" <ji...@apache.org> on 2018/03/06 21:49:00 UTC

[jira] [Created] (SENTRY-2152) Only Admin can set dbproperty 'owner.privileges'

Na Li created SENTRY-2152:
-----------------------------

             Summary: Only Admin can set dbproperty 'owner.privileges'
                 Key: SENTRY-2152
                 URL: https://issues.apache.org/jira/browse/SENTRY-2152
             Project: Sentry
          Issue Type: Sub-task
          Components: Sentry
    Affects Versions: 2.1.0
            Reporter: Na Li
             Fix For: 2.1.0


Right now, anyone can set database property. We should add authorization when setting dbproperty 'owner.privileges' from hive, so only admin can do it.
The allowed values are: none, all, all with grant

For example, when a non-admin user issues command
{code:java}
alter database db1 set dbproperty('owner.privileges'='all with grant')
{code}
The command should fail and the error message indicating the user does not have right to set this value.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)