[
https://issues.apache.org/jira/browse/IMPALA-7456?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16628283#comment-16628283
]
ASF subversion and git services commented on IMPALA-7456:
---------------------------------------------------------
Commit 48640b5dfa131ca0c7ae9e541e376d11ac6e6d33 in impala's branch
refs/heads/master from [~aholley]
[ https://git-wip-us.apache.org/repos/asf?p=impala.git;h=48640b5 ]
IMPALA-7456: Deprecate file-based authorization
This patch simply adds a warning message to the log when the
authorization_policy_file run-time flag is used. Sentry has
deprecated the use of policy files and they do not support
user level privileges which are required for object ownership.
Here is the Jira where it will be removed. SENTRY-1922
Test:
- Added custom cluster test to validate logs
- Ran all custom cluster tests
Change-Id: Ibbb13f3ef1c3a00812c180ecef022ea638c2ebc7
Reviewed-on: http://gerrit.cloudera.org:8080/11502
Reviewed-by: Fredy Wijaya <[email protected]>
Tested-by: Impala Public Jenkins <[email protected]>
> Deprecated file-based authorization
> -----------------------------------
>
> Key: IMPALA-7456
> URL: https://issues.apache.org/jira/browse/IMPALA-7456
> Project: IMPALA
> Issue Type: Dependency upgrade
> Components: Frontend
> Affects Versions: Impala 3.0
> Reporter: Adam Holley
> Assignee: Adam Holley
> Priority: Major
> Labels: security
> Fix For: Impala 3.1.0
>
>
> Sentry has deprecated their support of file-based authorizations. Some newer
> security features such as object ownership require user level authorizations
> which the file-based security does not support.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
