Mahesh Bandal created RANGER-5409:
-------------------------------------
Summary: Rename should not be allowed on a table having row filter
or column masking policy
Key: RANGER-5409
URL: https://issues.apache.org/jira/browse/RANGER-5409
Project: Ranger
Issue Type: Improvement
Components: Ranger
Affects Versions: 3.0.0
Reporter: Mahesh Bandal
Assignee: Mahesh Bandal
Current behaviour:
When row filter/column masking policy is enabled, the user is not able to
insert any new data or sensitive information is not visible to the user.
However, when rename of a table is allowed for the same table, then user can
insert a new row into the table and the masked information is also visible.
Expected action:
update the Hive authorization logic so that the ALTER TABLE command is denied
if the source table has an active row filter or column masking policy, so that
security policies are not bypassed by renaming tables or columns.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
