[jira] Updated: (HIVE-78) Authorization infrastructure for Hive

Mon, 22 Nov 2010 19:00:44 -0800 

     [ 
https://issues.apache.org/jira/browse/HIVE-78?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

He Yongqiang updated HIVE-78:
-----------------------------

    Attachment: HIVE-78.5.no_thrift.patch
                HIVE-78.5.complete.patch

A new patch.

Had an internal group code review, the main changes are:
1) instead of calling metastore again to get partition's privilege information, 
pack user's privileges in Partition object when getting partition.
2) added a few configs for grant behavior on new tables.

<property>
  <name>hive.exec.security.authorization.table.owner.grants</name>
  <value></value>
  <description>the privileges automatically granted to the owner</description>
</property>

<property>
  <name>hive.exec.security.authorization.table.user.grants</name>
  <value></value>
  <description>the privileges automatically granted to some users whenenve a 
table gets created. 
   An example like "userX,userY:select;userZ:create" will grant select 
privilege to userX and userY, 
   and grant create privilege to userZ whenenve a new table 
created.</description>
</property>

<property>
  <name>hive.exec.security.authorization.table.group.grants</name>
  <value></value>
  <description>the privileges automatically granted to some groups whenenve a 
table gets created. 
   An example like "groupX,groupY:select;groupZ:create" will grant select 
privilege to groupX and groupY, 
   and grant create privilege to groupZ whenenve a new table 
created.</description>
</property>

<property>
  <name>hive.exec.security.authorization.table.role.grants</name>
  <value></value>
  <description>the privileges automatically granted to some groups whenenve a 
table gets created. 
   An example like "roleX,roleY:select;roleZ:create" will grant select 
privilege to roleX and roleY, 
   and grant create privilege to roleZ whenenve a new table 
created.</description>
</property>

3) changed privilege 'Overwrite' to 'update'

> Authorization infrastructure for Hive
> -------------------------------------
>
>                 Key: HIVE-78
>                 URL: https://issues.apache.org/jira/browse/HIVE-78
>             Project: Hive
>          Issue Type: New Feature
>          Components: Metastore, Query Processor, Server Infrastructure
>            Reporter: Ashish Thusoo
>            Assignee: He Yongqiang
>         Attachments: createuser-v1.patch, hive-78-metadata-v1.patch, 
> hive-78-syntax-v1.patch, HIVE-78.1.nothrift.patch, HIVE-78.1.thrift.patch, 
> HIVE-78.2.nothrift.patch, HIVE-78.2.thrift.patch, HIVE-78.4.complete.patch, 
> HIVE-78.4.no_thrift.patch, HIVE-78.5.complete.patch, 
> HIVE-78.5.no_thrift.patch, hive-78.diff
>
>
> Allow hive to integrate with existing user repositories for authentication 
> and authorization infromation.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to