You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@sentry.apache.org by "Sravya Tirukkovalur (JIRA)" <ji...@apache.org> on 2014/06/06 23:56:02 UTC

[jira] [Created] (SENTRY-268) Allow only granted roles to be set in "SET ROLE "

Sravya Tirukkovalur created SENTRY-268:
------------------------------------------

             Summary: Allow only granted roles to be set in "SET ROLE <roleName>"
                 Key: SENTRY-268
                 URL: https://issues.apache.org/jira/browse/SENTRY-268
             Project: Sentry
          Issue Type: Bug
    Affects Versions: 1.4.0
            Reporter: Sravya Tirukkovalur
             Fix For: 1.4.0


This is related to https://issues.apache.org/jira/browse/SENTRY-240. Currently we allow any role to be set, but when authorizing we make an intersection of current active roles and granted privileges. Instead it would be better to restrict setting roles which a user is not granted.



--
This message was sent by Atlassian JIRA
(v6.2#6252)