You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@drill.apache.org by "Paul Rogers (JIRA)" <ji...@apache.org> on 2017/01/09 16:48:58 UTC
[jira] [Created] (DRILL-5180) Storage Plugin API provides user name
too late in process
Paul Rogers created DRILL-5180:
----------------------------------
Summary: Storage Plugin API provides user name too late in process
Key: DRILL-5180
URL: https://issues.apache.org/jira/browse/DRILL-5180
Project: Apache Drill
Issue Type: Improvement
Affects Versions: 1.8.0
Reporter: Paul Rogers
Priority: Minor
The storage plugin API provides a number of APIs to build up a table scan:
{code}
class AbstractSchema {
public Table getTable(String name){
...
interface StoragePlugin {
public AbstractGroupScan getPhysicalScan(String userName, JSONOptions selection) throws IOException {
{code}
This sequence assumes that tables are visible to all uses, but only a scan is restricted by permissions. Some systems, such as an RDBMS, restrict the *visibility* of tables based on users. That is, one must connect to an RDBMS as a user, and that user may be able to see certain tables but not others.
Since Drill asks for the table before presenting the named user, the API cannot support the RDBMS semantics.
The same is true, by the way, for schemas. A database might offer a variety of schemas, restricted by user permissions. The storage plugin cannot offer a list of schemas (or move into a schema) without knowing the user on whose behalf the plugin operates.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)