Alan Gates created HIVE-8033:
--------------------------------
Summary: StorageBasedAuthorizationProvider too restrictive on
insert/select
Key: HIVE-8033
URL: https://issues.apache.org/jira/browse/HIVE-8033
Project: Hive
Issue Type: Bug
Components: Authorization
Affects Versions: 0.13.1
Reporter: Alan Gates
When doing
{code}
insert into table foo select * from bar
{code}
StorageBasedAuth checks that the user has write permissions on bar. It only
needs read permission on bar for this operation.
To reproduce:
# As user1, create a table bar with file permissions set to world readable but
not writable.
# As user2, create table foo.
# Confirm that user2 can read from bar: select count(*) from bar;
# As user2: insert into foo select * from bar;
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
