[
https://issues.apache.org/jira/browse/HAWQ-256?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15420591#comment-15420591
]
Hubert Zhang edited comment on HAWQ-256 at 8/15/16 3:42 AM:
------------------------------------------------------------
HAWQ support two kinds of ACL check when there are more than one privilege in
one request.
One is ALL, which means that all the privileges are required to be allowed.
The other one is ANY, which means that one of the required privileges to be
allowed is sufficient.
{code}
{
“requestor” : “u1”,
[
{
"resource" : {“TABLE”: “t1”, “DATABASE”: “db1”},
"privilege" : ["select", "insert"]
"how": ALL
},
{
"resource" : {“TABLE”: “t2”, “DATABASE”: “db1”},
"privilege" : ["select"]
"how": ANY
}
]
}
{code}
was (Author: hubertzhang):
HAWQ support two kinds of ACL check when there are more than one privilege in
one request.
One is ALL, which means that all the privileges are required to be allowed.
The other one is ANY, which means that one of the required privileges to be
allowed is sufficient.
{code}
{
“requestor” : “u1”,
[
{
"resource" : {“TABLE”: “t1”, “DATABASE”: “db1”},
"privilege" : [“select”, "insert"]
"how": ALL
},
{
“resource” : {“TABLE”: “t2”, “DATABASE”: “db1”},
“privilege” : [“select”]
"how": ANY
}
]
}
{code}
> Integrate Security with Apache Ranger
> -------------------------------------
>
> Key: HAWQ-256
> URL: https://issues.apache.org/jira/browse/HAWQ-256
> Project: Apache HAWQ
> Issue Type: New Feature
> Components: PXF, Security
> Reporter: Michael Andre Pearce (IG)
> Assignee: Lili Ma
> Fix For: backlog
>
> Attachments: HAWQRangerSupportDesign.pdf
>
>
> Integrate security with Apache Ranger for a unified Hadoop security solution.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
