[jira] [Commented] (HIVE-12429) Switch default Hive authorization to SQLStandardAuth in 2.0

Tue, 12 Jan 2016 14:50:11 -0800 

    [ 
https://issues.apache.org/jira/browse/HIVE-12429?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15095146#comment-15095146
 ] 

Sushanth Sowmyan commented on HIVE-12429:
-----------------------------------------

After some discussion with Thejas, I think this is the best way forward:

a) If HiveConf.ConfVars.HIVE_AUTHORIZATION_ENABLED is false, return false.
b) If HiveConf.ConfVars.HIVE_AUTHORIZATION_ENABLED is true:
      i) if authorizer is a v2 authorizer or the old 
DefaultHiveAuthorizationProvider, then throw an exception saying it is 
unsupported.
      ii) else, return true;

This way, for SBAP as well as other third party v1 authorizers, we'll return 
true, if nothing is configured, we return false, and if a user tries to use the 
old Default Auth provider or a v2 authorizer, we throw an exception. Thoughts?

> Switch default Hive authorization to SQLStandardAuth in 2.0
> -----------------------------------------------------------
>
>                 Key: HIVE-12429
>                 URL: https://issues.apache.org/jira/browse/HIVE-12429
>             Project: Hive
>          Issue Type: Task
>          Components: Authorization, Security
>    Affects Versions: 2.0.0
>            Reporter: Alan Gates
>            Assignee: Daniel Dai
>         Attachments: HIVE-12429.1.patch, HIVE-12429.10.patch, 
> HIVE-12429.11.patch, HIVE-12429.12.patch, HIVE-12429.13.patch, 
> HIVE-12429.14.patch, HIVE-12429.15.patch, HIVE-12429.16.patch, 
> HIVE-12429.2.patch, HIVE-12429.3.patch, HIVE-12429.4.patch, 
> HIVE-12429.5.patch, HIVE-12429.6.patch, HIVE-12429.7.patch, 
> HIVE-12429.8.patch, HIVE-12429.9.patch
>
>
> Hive's default authorization is not real security, as it does not secure a 
> number of features and anyone can grant access to any object to any user.  We 
> should switch the default to SQLStandardAuth, which provides real 
> authentication.
> As this is a backwards incompatible change this was hard to do previously, 
> but 2.0 gives us a place to do this type of change.
> By default authorization will still be off, as there are a few other things 
> to set when turning on authorization (such as the list of admin users).



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to