Madhan Neethiraj created RANGER-1841:
----------------------------------------
Summary: Audit log record for 'use dbName' hive command contains
large number of tags
Key: RANGER-1841
URL: https://issues.apache.org/jira/browse/RANGER-1841
Project: Ranger
Issue Type: Bug
Components: plugins
Reporter: Madhan Neethiraj
When a Hive service is configured for tag-based authorization, the audit log
generated for ‘use dbName’ command would contain all the tags associated with:
the database, all tables in the database, all the columns in the database. The
number of tags in this audit log could be too many; and having such large
number of tags in audit logs of 'use <dbName>' command may not be useful. It
will be better not to log tags in audit logs for 'use <dbName>' commands.
Policy-id recorded in the audit log can be used to identity the tag, if a
tag-based policy authorized the command.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
