You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@hive.apache.org by "Thiruvel Thirumoolan (JIRA)" <ji...@apache.org> on 2013/12/20 23:20:10 UTC

[jira] [Updated] (HIVE-6093) table creation should fail when user does not have permissions on db

     [ https://issues.apache.org/jira/browse/HIVE-6093?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Thiruvel Thirumoolan updated HIVE-6093:
---------------------------------------

    Attachment: HIVE-6093.patch

Attaching a first approach patch. This checks the permission of database directory even if a location was specified during table creation.

> table creation should fail when user does not have permissions on db
> --------------------------------------------------------------------
>
>                 Key: HIVE-6093
>                 URL: https://issues.apache.org/jira/browse/HIVE-6093
>             Project: Hive
>          Issue Type: Bug
>          Components: Authorization, HCatalog, Metastore
>            Reporter: Thiruvel Thirumoolan
>            Assignee: Thiruvel Thirumoolan
>            Priority: Minor
>         Attachments: HIVE-6093.patch
>
>
> Its possible to create a table under a database where the user does not have write permission. It can be done by specifying a LOCATION where the user has write access (say /tmp/foo). This should be restricted.
> HdfsAuthorizationProvider (which typically runs on client) checks the database directory during table creation. But StorageBasedAuthorizationProvider does not.



--
This message was sent by Atlassian JIRA
(v6.1.4#6159)