[
https://issues.apache.org/jira/browse/SENTRY-881?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14741162#comment-14741162
]
Sravya Tirukkovalur commented on SENTRY-881:
--------------------------------------------
Minor comments:
Can you comment on these precondition checks:
Preconditions.checkState(inputHierarchy.get(0).size() == 3);
Preconditions.checkState(inputHierarchy.get(0).get(2).getAuthzType() ==
AuthorizableType.Table);
In the test case, can you add checks to verify the results returned, that is
all columns even the ones without privilege are returned for Describe table?
We handled show columns in SENTRY-847, do we need to again handle it here?
> Allow some metadata operations with column-level privileges
> -----------------------------------------------------------
>
> Key: SENTRY-881
> URL: https://issues.apache.org/jira/browse/SENTRY-881
> Project: Sentry
> Issue Type: Bug
> Components: Sentry
> Affects Versions: 1.5.0, 1.6.0
> Reporter: Lenni Kuff
> Assignee: Lenni Kuff
> Attachments: SENTRY-881.0.patch, SENTRY-881.1.patch
>
>
> It would be useful to allow some metadata operations if a user has only
> column-level permissions on a table. The two common statements are:
> DESCRIBE table
> and
> SHOW COLUMNS IN table
> DESCRIBE variants such as DESCRIBE FORMATTED should continue to require table
> level privileges, since they expose additional table metadata.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
