[
https://issues.apache.org/jira/browse/HIVE-6371?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14134195#comment-14134195
]
Thejas M Nair commented on HIVE-6371:
-------------------------------------
There is no clear way to implement this because SQL standard authorization is
supporting multiple concurrent roles. So the 'grantor' who granted the
privilege is not clear.
> sql std auth - revoke privileges api in metastore should check grantor user
> ---------------------------------------------------------------------------
>
> Key: HIVE-6371
> URL: https://issues.apache.org/jira/browse/HIVE-6371
> Project: Hive
> Issue Type: Sub-task
> Components: Authorization
> Reporter: Thejas M Nair
> Original Estimate: 24h
> Remaining Estimate: 24h
>
> revoke privilege statement should remove only the privileges granted by the
> user who is running the command. But the metastore api does not restrict the
> privileges being dropped by the grantor field of the privilege.
> This should be supported through metastore api.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
