[
https://issues.apache.org/jira/browse/HIVE-7361?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Thejas M Nair updated HIVE-7361:
--------------------------------
Labels: TODOC14 (was: )
Release Note:
This also changes behavior in SQL std auth -
reset command is now allowed.
dfs,add,delete,compile commands are now allowed for the admin user.
> using authorization api for RESET, DFS, ADD, DELETE, COMPILE commands
> ---------------------------------------------------------------------
>
> Key: HIVE-7361
> URL: https://issues.apache.org/jira/browse/HIVE-7361
> Project: Hive
> Issue Type: Improvement
> Components: Authorization
> Reporter: Thejas M Nair
> Assignee: Thejas M Nair
> Labels: TODOC14
> Attachments: HIVE-7361.1.patch, HIVE-7361.2.patch, HIVE-7361.3.patch
>
>
> The only way to disable the commands SET, RESET, DFS, ADD, DELETE and COMPILE
> that is available currently is to use the hive.security.command.whitelist
> parameter.
> Some of these commands are disabled using this configuration parameter for
> security reasons when SQL standard authorization is enabled. However, it gets
> disabled in all cases.
> If authorization api is used authorize the use of these commands, it will
> give authorization implementations the flexibility to allow/disallow these
> commands based on user privileges.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
