Repository: hbase
Updated Branches:
  refs/heads/branch-1 165bbb9e8 -> e0f706999


HBASE-12811 [AccessController] NPE while scanning a table with user not having 
READ permission on the namespace (Ashish)


Project: http://git-wip-us.apache.org/repos/asf/hbase/repo
Commit: http://git-wip-us.apache.org/repos/asf/hbase/commit/e0f70699
Tree: http://git-wip-us.apache.org/repos/asf/hbase/tree/e0f70699
Diff: http://git-wip-us.apache.org/repos/asf/hbase/diff/e0f70699

Branch: refs/heads/branch-1
Commit: e0f706999acee23231602c2760f16568eb9f6db5
Parents: 165bbb9
Author: tedyu <[email protected]>
Authored: Thu Jan 8 09:05:55 2015 -0800
Committer: tedyu <[email protected]>
Committed: Thu Jan 8 09:05:55 2015 -0800

----------------------------------------------------------------------
 .../apache/hadoop/hbase/security/access/TableAuthManager.java    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)
----------------------------------------------------------------------


http://git-wip-us.apache.org/repos/asf/hbase/blob/e0f70699/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/TableAuthManager.java
----------------------------------------------------------------------
diff --git 
a/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/TableAuthManager.java
 
b/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/TableAuthManager.java
index 4ed81dc..6ca40e6 100644
--- 
a/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/TableAuthManager.java
+++ 
b/hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/TableAuthManager.java
@@ -508,8 +508,8 @@ public class TableAuthManager {
     }
     if (table == null) table = AccessControlLists.ACL_TABLE_NAME;
     // Namespace authorization supercedes table level
-    if 
(authorize(getNamespacePermissions(table.getNamespaceAsString()).getGroup(groupName),
-        table, family, action)) {
+    String namespace = table.getNamespaceAsString();
+    if (authorize(getNamespacePermissions(namespace).getGroup(groupName), 
namespace, action)) {
       return true;
     }
     // Check table level

Reply via email to