Review Request 49779: RANGER-1087: Hive authorizer to block updates when row-filter/column-mask is enabled for the user

Madhan Neethiraj Thu, 07 Jul 2016 18:48:07 -0700

-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/49779/
-----------------------------------------------------------


Review request for ranger, Alok Lal, Don Bosco Durai, Gautam Borad, Abhay 
Kulkarni, Ramesh Mani, Selvamohan Neethiraj, Sailaja Polavarapu, and Velmurugan 
Periasamy.


Bugs: RANGER-1087
    https://issues.apache.org/jira/browse/RANGER-1087


Repository: ranger


Description
-------

Hive authorizer updated to block update operations 
(insert/update/delete/truncate) when row-filter/column-mask is enabled for the 
user


Diffs
-----

  
agents-common/src/main/java/org/apache/ranger/authorization/hadoop/constants/RangerHadoopConstants.java
 9a059b4 
  
hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAccessRequest.java
 ae83cf4 
  
hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuthorizer.java
 86a6418 

Diff: https://reviews.apache.org/r/49779/diff/


Testing
-------

- verified that attempt to insert/update/delete/truncate are denied if 
row-filter or column-mask is specifed for the user
- verified that these operations are allowed when no row-filter and columm-mask 
are specified for the user


Thanks,

Madhan Neethiraj

Review Request 49779: RANGER-1087: Hive authorizer to block updates when row-filter/column-mask is enabled for the user

Reply via email to