[
https://issues.apache.org/jira/browse/HIVE-2768?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Phabricator updated HIVE-2768:
------------------------------
Attachment: HIVE-2768.D1869.1.patch
toffer requested code review of "HIVE-2768 [jira] Add a
getAuthorizationProvider to HiveStorageHandler".
Reviewers: JIRA, cwsteinbach, ashutoshc
In version 0.92 HBase supports ACLs for tables. In HCatalog, since we
delegate security to the underlying storage layer, we would like to be able to
obtain a HiveAuthorizationProvider specific to a HiveStorageHandler instance.
This can be done by adding a getAuthorizationProvider method to
HiveStorageHandler. In the case where Hive is configured to use the
DefaultHiveAuthorizationProvider this call will return the same default
provider, since Hive handles all of the authorization itself in that case. In
the case where it is configured to use the HCatAuthorizationProvider, it would
return an instance specific to the underlying storage. For more background on
this proposed change see HCATALOG-237 and
https://cwiki.apache.org/confluence/display/HCATALOG/Hcat+Security+Design
TEST PLAN
EMPTY
REVISION DETAIL
https://reviews.facebook.net/D1869
AFFECTED FILES
ql/src/java/org/apache/hadoop/hive/ql/metadata/DefaultStorageHandler.java
ql/src/java/org/apache/hadoop/hive/ql/metadata/HiveStorageHandler.java
MANAGE HERALD DIFFERENTIAL RULES
https://reviews.facebook.net/herald/view/differential/
WHY DID I GET THIS EMAIL?
https://reviews.facebook.net/herald/transcript/3975/
Tip: use the X-Herald-Rules header to filter Herald messages in your client.
> Add a getAuthorizationProvider to HiveStorageHandler
> ----------------------------------------------------
>
> Key: HIVE-2768
> URL: https://issues.apache.org/jira/browse/HIVE-2768
> Project: Hive
> Issue Type: Task
> Components: HBase Handler
> Reporter: Alan Gates
> Attachments: HIVE-2768.D1869.1.patch
>
>
> In version 0.92 HBase supports ACLs for tables. In HCatalog, since we
> delegate security to the underlying storage layer, we would like to be able
> to obtain a HiveAuthorizationProvider specific to a HiveStorageHandler
> instance. This can be done by adding a getAuthorizationProvider method to
> HiveStorageHandler. In the case where Hive is configured to use the
> DefaultHiveAuthorizationProvider this call will return the same default
> provider, since Hive handles all of the authorization itself in that case.
> In the case where it is configured to use the HCatAuthorizationProvider, it
> would return an instance specific to the underlying storage.
> For more background on this proposed change see HCATALOG-237 and
> https://cwiki.apache.org/confluence/display/HCATALOG/Hcat+Security+Design
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
