[
https://issues.apache.org/jira/browse/HIVE-8083?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14141798#comment-14141798
]
Lefty Leverenz commented on HIVE-8083:
--------------------------------------
Does this need user doc? If so, it probably belongs here:
* [Hive Default Authorization (Legacy Mode) -- Names of Users and Roles |
https://cwiki.apache.org/confluence/display/Hive/Hive+Default+Authorization+-+Legacy+Mode#HiveDefaultAuthorization-LegacyMode-NamesofUsersandRoles]
* [SQL Standard Based Hive Authorization -- Names of Users and Roles |
https://cwiki.apache.org/confluence/display/Hive/SQL+Standard+Based+Hive+Authorization#SQLStandardBasedHiveAuthorization-NamesofUsersandRoles]
A release note would also be helpful.
> Authorization DDLs should not enforce hive identifier syntax for user or group
> ------------------------------------------------------------------------------
>
> Key: HIVE-8083
> URL: https://issues.apache.org/jira/browse/HIVE-8083
> Project: Hive
> Issue Type: Bug
> Components: SQL, SQLStandardAuthorization
> Affects Versions: 0.13.0, 0.13.1
> Reporter: Prasad Mujumdar
> Assignee: Prasad Mujumdar
> Fix For: 0.14.0
>
> Attachments: HIVE-8083.1.patch, HIVE-8083.2.patch, HIVE-8083.3.patch
>
>
> The compiler expects principals (user, group and role) as hive identifiers
> for authorization DDLs. The user and group are entities that belong to
> external namespace and we can't expect those to follow hive identifier syntax
> rules. For example, a userid or group can contain '-' which is not allowed by
> compiler.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
