[
https://issues.apache.org/jira/browse/SENTRY-702?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14514503#comment-14514503
]
Prasad Mujumdar commented on SENTRY-702:
----------------------------------------
Only the 'set' command has a way to enforce some authorization (via the
restrict list) and hence that's the only one currently allowed. I guess we
should make the Hive command whitelist configurable from Sentry. This will
offer some flexibility to users. For example 'add file' is far less of an issue
since Hive plugin enforces URI privilege on transforms etc.
In long term we should work with Hive community to implement most of these
statements via normal compiler which so that the authorization plugin can
handle it.
> Hive binding should support RELOAD command
> ------------------------------------------
>
> Key: SENTRY-702
> URL: https://issues.apache.org/jira/browse/SENTRY-702
> Project: Sentry
> Issue Type: Bug
> Affects Versions: 1.5.0
> Reporter: Prasad Mujumdar
> Assignee: Dapeng Sun
> Attachments: SENTRY-702.001.patch, SENTRY-702.002.patch
>
>
> If Sentry is enabled, the RELOAD command cannot be executed in the
> HiveServer2. The statement fails with Insufficient privileges error.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
