Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_cycles2.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_cycles2.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_cycles2.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_cycles2.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=hive_admin_user;
Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_grant.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_grant.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_grant.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_role_grant.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=hive_admin_user; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_rolehierarchy_privs.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_rolehierarchy_privs.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_rolehierarchy_privs.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_rolehierarchy_privs.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select_view.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select_view.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select_view.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_select_view.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg1.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg1.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg1.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg1.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; -- an error should be thrown if 'set role ' is done for role that does not exist Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg2.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg2.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg2.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_set_role_neg2.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=hive_admin_user; set role ADMIN; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_parts_nosel.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_parts_nosel.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_parts_nosel.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_parts_nosel.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; set user.name=user1; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_role_principals_no_admin.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_role_principals_no_admin.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_role_principals_no_admin.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_role_principals_no_admin.q Tue Apr 8 17:38:20 2014 @@ -1,3 +1,3 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; -- This test will fail because hive_test_user is not in admin role show principals role1; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_roles_no_admin.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_roles_no_admin.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_roles_no_admin.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_show_roles_no_admin.q Tue Apr 8 17:38:20 2014 @@ -1,3 +1,3 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; -- This test will fail because hive_test_user is not in admin role show roles; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_truncate.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_truncate.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_truncate.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_truncate.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_add_partition.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_add_partition.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_add_partition.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_add_partition.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_alterpart_loc.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_alterpart_loc.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_alterpart_loc.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_alterpart_loc.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_altertab_setloc.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_altertab_setloc.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_altertab_setloc.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_altertab_setloc.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table1.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table1.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table1.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table1.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table_ext.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table_ext.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table_ext.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_create_table_ext.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_createdb.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_createdb.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_createdb.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_createdb.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_index.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_index.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_index.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_index.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert_local.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert_local.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert_local.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_insert_local.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_load_data.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_load_data.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_load_data.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorization_uri_load_data.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorize_create_tbl.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorize_create_tbl.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorize_create_tbl.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientnegative/authorize_create_tbl.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_1_sql_std.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_1_sql_std.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_1_sql_std.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_1_sql_std.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=hive_admin_user; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_admin_almighty1.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_admin_almighty1.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_admin_almighty1.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_admin_almighty1.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=hive_test_user; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_func1.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_func1.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_func1.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_func1.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; set user.name=hive_admin_user; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_macro1.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_macro1.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_macro1.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_macro1.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; set user.name=hive_admin_user; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_table_owner_privs.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_table_owner_privs.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_table_owner_privs.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_create_table_owner_privs.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=user1; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_grant_table_priv.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_grant_table_priv.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_grant_table_priv.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_grant_table_priv.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=user1; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; set user.name=user1; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions_db.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions_db.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions_db.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_owner_actions_db.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; set user.name=hive_admin_user; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_revoke_table_priv.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_revoke_table_priv.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_revoke_table_priv.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_revoke_table_priv.q Tue Apr 8 17:38:20 2014 @@ -1,4 +1,4 @@ -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=user1; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant1.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant1.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant1.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant1.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=hive_admin_user; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant2.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant2.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant2.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_role_grant2.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.cli.print.header=true; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_set_show_current_role.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_set_show_current_role.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_set_show_current_role.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_set_show_current_role.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set user.name=hive_admin_user; set role ADMIN; Modified: hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_view_sqlstd.q URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_view_sqlstd.q?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_view_sqlstd.q (original) +++ hive/branches/branch-0.13/ql/src/test/queries/clientpositive/authorization_view_sqlstd.q Tue Apr 8 17:38:20 2014 @@ -1,5 +1,5 @@ set hive.users.in.admin.role=hive_admin_user; -set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactory; +set hive.security.authorization.manager=org.apache.hadoop.hive.ql.security.authorization.plugin.sqlstd.SQLStdHiveAuthorizerFactoryForTest; set hive.security.authenticator.manager=org.apache.hadoop.hive.ql.security.SessionStateConfigUserAuthenticator; set hive.security.authorization.enabled=true; set user.name=user1; Modified: hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_addjar.q.out URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_addjar.q.out?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_addjar.q.out (original) +++ hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_addjar.q.out Tue Apr 8 17:38:20 2014 @@ -1 +1,16 @@ +PREHOOK: query: -- running a sql query to initialize the authorization - not needed in real HS2 mode +show tables +PREHOOK: type: SHOWTABLES +POSTHOOK: query: -- running a sql query to initialize the authorization - not needed in real HS2 mode +show tables +POSTHOOK: type: SHOWTABLES +alltypesorc +src +src1 +src_json +src_sequencefile +src_thrift +srcbucket +srcbucket2 +srcpart Failed processing command add Insufficient privileges to execute add Added: hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_dfs.q.out URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_dfs.q.out?rev=1585791&view=auto ============================================================================== --- hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_dfs.q.out (added) +++ hive/branches/branch-0.13/ql/src/test/results/clientnegative/authorization_dfs.q.out Tue Apr 8 17:38:20 2014 @@ -0,0 +1,16 @@ +PREHOOK: query: -- running a sql query to initialize the authorization - not needed in real HS2 mode +show tables +PREHOOK: type: SHOWTABLES +POSTHOOK: query: -- running a sql query to initialize the authorization - not needed in real HS2 mode +show tables +POSTHOOK: type: SHOWTABLES +alltypesorc +src +src1 +src_json +src_sequencefile +src_thrift +srcbucket +srcbucket2 +srcpart +Failed processing command dfs Insufficient privileges to execute dfs Modified: hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/HiveSessionImpl.java URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/HiveSessionImpl.java?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/HiveSessionImpl.java (original) +++ hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/HiveSessionImpl.java Tue Apr 8 17:38:20 2014 @@ -91,7 +91,7 @@ public class HiveSessionImpl implements //set conf properties specified by user from client side if (sessionConfMap != null) { for (Map.Entry<String, String> entry : sessionConfMap.entrySet()) { - hiveConf.set(entry.getKey(), entry.getValue()); + hiveConf.verifyAndSet(entry.getKey(), entry.getValue()); } } // set an explicit session name to control the download directory name Modified: hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/SessionManager.java URL: http://svn.apache.org/viewvc/hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/SessionManager.java?rev=1585791&r1=1585790&r2=1585791&view=diff ============================================================================== --- hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/SessionManager.java (original) +++ hive/branches/branch-0.13/service/src/java/org/apache/hive/service/cli/session/SessionManager.java Tue Apr 8 17:38:20 2014 @@ -31,6 +31,8 @@ import org.apache.commons.logging.LogFac import org.apache.hadoop.hive.conf.HiveConf; import org.apache.hadoop.hive.conf.HiveConf.ConfVars; import org.apache.hadoop.hive.ql.hooks.HookUtils; +import org.apache.hadoop.hive.ql.metadata.HiveException; +import org.apache.hadoop.hive.ql.session.SessionState; import org.apache.hive.service.CompositeService; import org.apache.hive.service.auth.TSetIpAddressProcessor; import org.apache.hive.service.cli.HiveSQLException; @@ -57,6 +59,12 @@ public class SessionManager extends Comp @Override public synchronized void init(HiveConf hiveConf) { + try { + applyAuthorizationConfigPolicy(hiveConf); + } catch (HiveException e) { + throw new RuntimeException("Error applying authorization policy on hive configuration", e); + } + this.hiveConf = hiveConf; int backgroundPoolSize = hiveConf.getIntVar(ConfVars.HIVE_SERVER2_ASYNC_EXEC_THREADS); LOG.info("HiveServer2: Async execution thread pool size: " + backgroundPoolSize); @@ -74,6 +82,13 @@ public class SessionManager extends Comp super.init(hiveConf); } + private void applyAuthorizationConfigPolicy(HiveConf newHiveConf) throws HiveException { + // authorization setup using SessionState should be revisited eventually, as + // authorization and authentication are not session specific settings + SessionState ss = SessionState.start(newHiveConf); + ss.applyAuthorizationPolicy(); + } + @Override public synchronized void start() { super.start();
