[
https://issues.apache.org/jira/browse/DRILL-7871?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17386561#comment-17386561
]
ASF GitHub Bot commented on DRILL-7871:
---------------------------------------
paul-rogers commented on pull request #2251:
URL: https://github.com/apache/drill/pull/2251#issuecomment-885928024
@vdiravka, let's think about your larger goal. If the goal is a true
multi-tenant model, in which tenants are distinct business entities (rather
than different departments within a single entity), then we must also ensure
each tenant has access to only their own query profiles. Will there be another
PR for this? Is there a roll-up Jira ticket for all the issues involved in true
multi-tenant operation?
Also, the Drill UI assumes a single organization. If the UI is to be exposed
to multi-tenant users (so they can monitor queries, see query profiles, etc.),
then the UI must change. Tenants should not be able to see details, or change
the state of, Drillbits. Session options should reflect tenant values. Probably
other changes. Will there be a design or PR for this?
Further, each tenant must have guarantees on resources. That is, Tenant A
should not be able to run a huge query that denies resources sold to Tenant B.
This is a **very hard** problem. If you don't solve the hard problem, the
options and plugins are somewhat moot. The option and plugin features are
handy, but do not, by themselves, give you multi-tenant support in Drill.
System tables could "leak" information between tenants. Should system tables
be disabled? What changes would be needed to ensure that no per-tenant
information "leaks" to another tenant?
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
> StoragePluginStore instances for different users
> ------------------------------------------------
>
> Key: DRILL-7871
> URL: https://issues.apache.org/jira/browse/DRILL-7871
> Project: Apache Drill
> Issue Type: New Feature
> Components: Security
> Affects Versions: 1.18.0
> Reporter: Vitalii Diravka
> Assignee: Vitalii Diravka
> Priority: Major
>
> Different users should have their own storage plugin configs to have access
> to own storages only. The feature can be based on Drill User Impersonation
> model
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
