[
https://issues.apache.org/jira/browse/RANGER-4723?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Madhan Neethiraj updated RANGER-4723:
-------------------------------------
Attachment: RANGER-4723.patch
> USE <database> fails even when the user has permission on some tables in the
> database
> -------------------------------------------------------------------------------------
>
> Key: RANGER-4723
> URL: https://issues.apache.org/jira/browse/RANGER-4723
> Project: Ranger
> Issue Type: Bug
> Components: plugins
> Reporter: Madhan Neethiraj
> Assignee: Madhan Neethiraj
> Priority: Major
> Fix For: 3.0.0
>
> Attachments: RANGER-4723.patch
>
>
> Consider the following scenario:
> # a resource-based policy allows user {{user1}} {{select}} access to all
> tables in database {{db1}}
> # tables with name starting with "{{{}test{}}}" in database {{db1}} are
> added to security-zone {{test_zone}}
> Note that {{user1}} doesn't have any access to tables in zone
> {{{}test_zone{}}}. However, the user has access to all other tables in
> database db1 via policy created in #1 above. So, {{USE db1;}} command should
> be allowed for the user. However, the user is denied.
>
> {noformat}
> > use db1;
> Error: Error while compiling statement: FAILED: HiveAccessControlException
> Permission denied: user [user1] does not have [USE] privilege on [db1]
> (state=42000,code=40000) {noformat}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
