[
https://issues.apache.org/jira/browse/HIVE-16497?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15981848#comment-15981848
]
Sushanth Sowmyan commented on HIVE-16497:
-----------------------------------------
+1, LGTM.
> FileUtils. isActionPermittedForFileHierarchy, isOwnerOfFileHierarchy file
> system operations should be impersonated
> ------------------------------------------------------------------------------------------------------------------
>
> Key: HIVE-16497
> URL: https://issues.apache.org/jira/browse/HIVE-16497
> Project: Hive
> Issue Type: Bug
> Components: Authorization
> Reporter: Thejas M Nair
> Assignee: Thejas M Nair
> Fix For: 3.0.0
>
> Attachments: HIVE-16497.1.patch, HIVE-16497.2.patch
>
>
> FileUtils.isActionPermittedForFileHierarchy checks if user has permissions
> for given action. The checks are made by impersonating the user.
> However, the listing of child dirs are done as the hiveserver2 user. If the
> hive user doesn't have permissions on the filesystem, it gives incorrect
> error that the user doesn't have permissions to perform the action.
> Impersonating the end user for all file operations in that function is also
> logically correct thing to do.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
