[
https://issues.apache.org/jira/browse/HIVE-6093?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Thiruvel Thirumoolan updated HIVE-6093:
---------------------------------------
Fix Version/s: 0.14.0
Labels: authorization metastore security (was: )
Affects Version/s: 0.12.0
0.13.0
Release Note: One cannot create table (whether or not they provide a
LOCATION) if they do not have WRITE permission on the database directory.
Status: Patch Available (was: Open)
> table creation should fail when user does not have permissions on db
> --------------------------------------------------------------------
>
> Key: HIVE-6093
> URL: https://issues.apache.org/jira/browse/HIVE-6093
> Project: Hive
> Issue Type: Bug
> Components: Authorization, HCatalog, Metastore
> Affects Versions: 0.13.0, 0.12.0
> Reporter: Thiruvel Thirumoolan
> Assignee: Thiruvel Thirumoolan
> Priority: Minor
> Labels: security, authorization, metastore
> Fix For: 0.14.0
>
> Attachments: HIVE-6093-1.patch, HIVE-6093.patch
>
>
> Its possible to create a table under a database where the user does not have
> write permission. It can be done by specifying a LOCATION where the user has
> write access (say /tmp/foo). This should be restricted.
> HdfsAuthorizationProvider (which typically runs on client) checks the
> database directory during table creation. But
> StorageBasedAuthorizationProvider does not.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
