[jira] Commented: (HIVE-78) Authentication infrastructure for Hive

Wed, 16 Sep 2009 19:27:22 -0700 

    [ 
https://issues.apache.org/jira/browse/HIVE-78?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12756335#action_12756335
 ] 

Min Zhou commented on HIVE-78:
------------------------------

@Edward

Sorry for my abuse of some words,  I hope this will not affect our work.  

Can you give me the jiras you decided not to store username/password 
information in hive and hadoop will?       
I think most companies are using hadoop versions from 0.17 to 0.20 , which 
don't have good password securities. Once  a company takes a particular 
version, upgrades for them is a very important issue, many companies will adopt 
a more stable version. Moreover, now hadoop still do not have that feature, 
which may cost a very long time to implement.  Why should we are waiting for, 
rather than accomplish it? I think Hive is necessary to support user/password 
at least for current versions of hadoop. There are many companies who are using 
hive reflected that current hive is inconvenient for multi-user, as long as 
environment isolation, table sharing, security, etc. We must try to meet the 
requirements of most of them.

Regarding the syntax, I guess we can do it in two steps. 
# support GRANT/REVOKE privileges to users.
# support some sort of server administration privileges as Ashish metioned. 
The GRANT statement enables system administrators to create Hive user accounts 
and to grant rights to accounts. To use GRANT, you must have the GRANT OPTION 
privilege, and you must have the privileges that you are grantingad. The REVOKE 
statement is related and enables ministrators to remove account privileges.

 File hive-78-syntax-v1.patch modifies the syntax. Any comments on that?


> Authentication infrastructure for Hive
> --------------------------------------
>
>                 Key: HIVE-78
>                 URL: https://issues.apache.org/jira/browse/HIVE-78
>             Project: Hadoop Hive
>          Issue Type: New Feature
>          Components: Server Infrastructure
>            Reporter: Ashish Thusoo
>            Assignee: Edward Capriolo
>         Attachments: hive-78-metadata-v1.patch, hive-78-syntax-v1.patch, 
> hive-78.diff
>
>
> Allow hive to integrate with existing user repositories for authentication 
> and authorization infromation.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

Reply via email to