[
https://issues.apache.org/jira/browse/HIVE-8221?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Thejas M Nair updated HIVE-8221:
--------------------------------
Release Note:
Storagebased authorization now authorizes read privilege on database and
tables. get_database api call needs database directory read privilege.
get_table_* calls that fetch table information and get_partition_* calls to
list the partitions of a table require read privilege on the table directory.
. It is enabled by default with Storagebased authorization. Set
hive.security.metastore.authorization.auth.reads=false to disable this check in
storage based authorization.
> authorize additional metadata read operations in metastore storage based
> authorization
> ---------------------------------------------------------------------------------------
>
> Key: HIVE-8221
> URL: https://issues.apache.org/jira/browse/HIVE-8221
> Project: Hive
> Issue Type: Bug
> Components: Authorization
> Reporter: Thejas M Nair
> Assignee: Thejas M Nair
> Priority: Blocker
> Fix For: 0.14.0
>
> Attachments: HIVE-8221.1.patch, HIVE-8221.2.patch
>
>
> Table and database metadata read operations should also be authorized by
> storage based authorization, when enabled in hive metastore.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
