Alan Gates created HIVE-8033: -------------------------------- Summary: StorageBasedAuthorizationProvider too restrictive on insert/select Key: HIVE-8033 URL: https://issues.apache.org/jira/browse/HIVE-8033 Project: Hive Issue Type: Bug Components: Authorization Affects Versions: 0.13.1 Reporter: Alan Gates
When doing {code} insert into table foo select * from bar {code} StorageBasedAuth checks that the user has write permissions on bar. It only needs read permission on bar for this operation. To reproduce: # As user1, create a table bar with file permissions set to world readable but not writable. # As user2, create table foo. # Confirm that user2 can read from bar: select count(*) from bar; # As user2: insert into foo select * from bar; -- This message was sent by Atlassian JIRA (v6.3.4#6332)