----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/67072/#review203143 -----------------------------------------------------------
sentry-binding/sentry-binding-hive/src/main/java/org/apache/sentry/binding/hive/HiveAuthzBindingHook.java Line 304 (original), 304-305 (patched) <https://reviews.apache.org/r/67072/#comment285227> I need to do some research on the best way to handle this. 1) have white list for commands that are processed in other places, like grant/revoke privileges, show databases. 2) For DDL command, if the user has all privilege on the level of the input/ouput, then allow. - Na Li On May 10, 2018, 9:36 p.m., Na Li wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/67072/ > ----------------------------------------------------------- > > (Updated May 10, 2018, 9:36 p.m.) > > > Review request for sentry, Alexander Kolbasov, Arjun Mishra, kalyan kumar > kalvagadda, and Sergio Pena. > > > Bugs: sentry-2228 > https://issues.apache.org/jira/browse/sentry-2228 > > > Repository: sentry > > > Description > ------- > > throw exception for unsupported hive commands > > > Diffs > ----- > > > sentry-binding/sentry-binding-hive/src/main/java/org/apache/sentry/binding/hive/HiveAuthzBindingHook.java > 09bd9b5 > > > Diff: https://reviews.apache.org/r/67072/diff/2/ > > > Testing > ------- > > > Thanks, > > Na Li > >
