[
https://issues.apache.org/jira/browse/HIVE-7361?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Thejas M Nair updated HIVE-7361:
--------------------------------
Attachment: HIVE-7361.3.patch
HIVE-7361.3.patch- Addressing review comments. Fixed issue with user in admin
role not being able to run dfs,add,delete,compile commands.
> using authorization api for RESET, DFS, ADD, DELETE, COMPILE commands
> ---------------------------------------------------------------------
>
> Key: HIVE-7361
> URL: https://issues.apache.org/jira/browse/HIVE-7361
> Project: Hive
> Issue Type: Improvement
> Components: Authorization
> Reporter: Thejas M Nair
> Assignee: Thejas M Nair
> Attachments: HIVE-7361.1.patch, HIVE-7361.2.patch, HIVE-7361.3.patch
>
>
> The only way to disable the commands SET, RESET, DFS, ADD, DELETE and COMPILE
> that is available currently is to use the hive.security.command.whitelist
> parameter.
> Some of these commands are disabled using this configuration parameter for
> security reasons when SQL standard authorization is enabled. However, it gets
> disabled in all cases.
> If authorization api is used authorize the use of these commands, it will
> give authorization implementations the flexibility to allow/disallow these
> commands based on user privileges.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
