[jira] [Created] (RANGER-4839) RangerHiveAuthorizer.checkPrivileges ignores the result of buildRequestContextWithAllAccessedResources

kirby zhou (Jira) Sun, 30 Jun 2024 22:25:03 -0700

kirby zhou created RANGER-4839:
----------------------------------

             Summary: RangerHiveAuthorizer.checkPrivileges ignores the result 
of buildRequestContextWithAllAccessedResources 
                 Key: RANGER-4839
                 URL: https://issues.apache.org/jira/browse/RANGER-4839
             Project: Ranger
          Issue Type: Bug
          Components: plugins
    Affects Versions: 2.4.0, 3.0.0
            Reporter: kirby zhou



RangerHiveAuthorizer.checkPrivileges ignores the result of 
buildRequestContextWithAllAccessedResources 

 

buildRequestContextWithAllAccessedResources will expand requests to 
RangerRequestedResources if there are anys columns in resource. But the return 
result is ignored.
{code:java}
// buildRequestContextWithAllAccessedResources

for (String column : columns) {
    if (column != null) {
       column = column.trim();
    }
    if (StringUtils.isBlank(column)) {
       continue;
    }

    RangerHiveResource colResource = new 
RangerHiveResource(HiveObjectType.COLUMN, resource.getDatabase(), 
resource.getTable(), column);
    colResource.setOwnerUser(resource.getOwnerUser());
    colResource.setServiceDef(hivePlugin.getServiceDef());

    requestedResources.addRequestedResource(colResource);
}
 {code}
{code:java}
// RangerHiveAuthorizer.checkPrivileges

buildRequestContextWithAllAccessedResources(requests);

for(RangerHiveAccessRequest request : requests) {
  // ...
} {code}



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (RANGER-4839) RangerHiveAuthorizer.checkPrivileges ignores the result of buildRequestContextWithAllAccessedResources

Reply via email to