[
https://issues.apache.org/jira/browse/CASSANDRA-7894?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14124269#comment-14124269
]
Aleksey Yeschenko commented on CASSANDRA-7894:
----------------------------------------------
bq. How can we cache them for longer so we do not have to look up often?
See `permissions_validity_in_ms` in cassandra.yaml
> Authorization fails occasionally even when user has permission
> --------------------------------------------------------------
>
> Key: CASSANDRA-7894
> URL: https://issues.apache.org/jira/browse/CASSANDRA-7894
> Project: Cassandra
> Issue Type: Bug
> Reporter: Vishy Kasar
>
> Production cluster uses org.apache.cassandra.auth.PasswordAuthenticator and
> org.apache.cassandra.auth.CassandraAuthorizer. The user has SELECT and MODIFY
> permissions.
> cqlsh> list ALL ON ALL KEYSPACES;
> x_cassandra_user | <all keyspaces> | SELECT
> x_cassandra_user | <all keyspaces> | MODIFY
> Millions of requests from user go through fine. A very small percentage fail
> with following message sent back to hector client.
> Caused by: me.prettyprint.hector.api.exceptions.HInvalidRequestException:
> InvalidRequestException(why:User x_cassandra_user has no SELECT permission on
> <table ks.cf> or any of its parents)
> Any ideas now why this fails?
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)