[ https://issues.apache.org/jira/browse/HIVE-7361?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Thejas M Nair updated HIVE-7361: -------------------------------- Labels: TODOC14 (was: ) Release Note: This also changes behavior in SQL std auth - reset command is now allowed. dfs,add,delete,compile commands are now allowed for the admin user. > using authorization api for RESET, DFS, ADD, DELETE, COMPILE commands > --------------------------------------------------------------------- > > Key: HIVE-7361 > URL: https://issues.apache.org/jira/browse/HIVE-7361 > Project: Hive > Issue Type: Improvement > Components: Authorization > Reporter: Thejas M Nair > Assignee: Thejas M Nair > Labels: TODOC14 > Attachments: HIVE-7361.1.patch, HIVE-7361.2.patch, HIVE-7361.3.patch > > > The only way to disable the commands SET, RESET, DFS, ADD, DELETE and COMPILE > that is available currently is to use the hive.security.command.whitelist > parameter. > Some of these commands are disabled using this configuration parameter for > security reasons when SQL standard authorization is enabled. However, it gets > disabled in all cases. > If authorization api is used authorize the use of these commands, it will > give authorization implementations the flexibility to allow/disallow these > commands based on user privileges. -- This message was sent by Atlassian JIRA (v6.2#6252)