pvary commented on PR #3316: URL: https://github.com/apache/hive/pull/3316#issuecomment-1167246761
> Hi @pvary thanks for your concern. It is indeed important to do authorization for operating UDF. But I do not think it should be an admin privilege for the user level function, user should be able to create or alter their UDF, so an `OWNER_PRIV` is enough just like #3360. Makes sense > Also, we can achieve the authorization in Hive MetaStore by `MetaStorePreEventListener`, I think it can be done after #3360 because there will be some similar code. I would prefer to have a security check already at hand when we enable the alter function. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
