[jira] [Updated] (HIVE-21753) Update HiveMetastore authorization to enable use of HiveAuthorizer implementation

Sun, 19 May 2019 20:18:42 -0700 


     [ 
https://issues.apache.org/jira/browse/HIVE-21753?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Ramesh Mani updated HIVE-21753:
-------------------------------
    Description: Currently HMS supports authorization using 
StorageBasedAuthorizationProvider which relies on permissions at filesystem – 
like HDFS. Hive supports a pluggable authorization interface, and multiple 
authorizer implementations (like SQLStd, Ranger, Sentry) are available to 
authorizer access in Hive. Extending HiveMetastore to use the same 
authorization interface as Hive will enable use of pluggable authorization 
implementations; and will result in consistent authorization across Hive, HMS 
and other services that use HMS (like Spark).  (was: Description: Currently HMS 
supports authorization using StorageBasedAuthorizationProvider which relies on 
permissions at filesystem – like HDFS. Hive supports a pluggable authorization 
interface, and multiple authorizer implementations (like SQLStd, Ranger, 
Sentry) are available to authorizer access in Hive. Extending HiveMetastore to 
use the same authorization interface as Hive will enable use of pluggable 
authorization implementations; and will result in consistent authorization 
across Hive, HMS and other services that use HMS (like Spark).)

> Update HiveMetastore authorization to enable use of HiveAuthorizer 
> implementation
> ---------------------------------------------------------------------------------
>
>                 Key: HIVE-21753
>                 URL: https://issues.apache.org/jira/browse/HIVE-21753
>             Project: Hive
>          Issue Type: Bug
>          Components: Hive
>    Affects Versions: 3.1.2
>            Reporter: Ramesh Mani
>            Assignee: Ramesh Mani
>            Priority: Critical
>
> Currently HMS supports authorization using StorageBasedAuthorizationProvider 
> which relies on permissions at filesystem – like HDFS. Hive supports a 
> pluggable authorization interface, and multiple authorizer implementations 
> (like SQLStd, Ranger, Sentry) are available to authorizer access in Hive. 
> Extending HiveMetastore to use the same authorization interface as Hive will 
> enable use of pluggable authorization implementations; and will result in 
> consistent authorization across Hive, HMS and other services that use HMS 
> (like Spark).



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to