[jira] [Commented] (HBASE-11251) LoadTestTool should grant READ permission for the users that are given READ access for specific cells

Mon, 26 May 2014 16:28:20 -0700 

    [ 
https://issues.apache.org/jira/browse/HBASE-11251?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14009136#comment-14009136
 ] 

Hudson commented on HBASE-11251:
--------------------------------

SUCCESS: Integrated in HBase-0.98-on-Hadoop-1.1 #296 (See 
[https://builds.apache.org/job/HBase-0.98-on-Hadoop-1.1/296/])
HBASE-11251-LoadTestTool should grant READ permission for the users that 
(ramkrishna: rev 6c46a07f16bf399757f1e0152ddf58aadb6345a2)
* hbase-server/src/test/java/org/apache/hadoop/hbase/util/LoadTestTool.java
Amend HBASE-11251 Attempt grants during tests only when security is enabled 
(apurtell: rev d29d73ebae77a563ad1e3dc7965f31ca88b78488)
* 
hbase-server/src/test/java/org/apache/hadoop/hbase/util/MultiThreadedUpdaterWithACL.java
* hbase-server/src/test/java/org/apache/hadoop/hbase/util/LoadTestTool.java
* 
hbase-it/src/test/java/org/apache/hadoop/hbase/IntegrationTestIngestWithACL.java
* 
hbase-server/src/test/java/org/apache/hadoop/hbase/util/MultiThreadedReaderWithACL.java


> LoadTestTool should grant READ permission for the users that are given READ 
> access for specific cells
> -----------------------------------------------------------------------------------------------------
>
>                 Key: HBASE-11251
>                 URL: https://issues.apache.org/jira/browse/HBASE-11251
>             Project: HBase
>          Issue Type: Bug
>    Affects Versions: 0.98.2
>            Reporter: ramkrishna.s.vasudevan
>            Assignee: ramkrishna.s.vasudevan
>             Fix For: 0.99.0, 0.98.3
>
>         Attachments: HBASE-11251-addendum-0.98.patch, 
> HBASE-11251-addendum-trunk.patch, HBASE-11251_0.98.patch, 
> HBASE-11251_0.98_1.patch, HBASE-11251_trunk.patch, HBASE-11251_trunk_1.patch
>
>
> In 0.98.2 onwards the AccessControlFilter
> {code}
> case CHECK_CELL_FIRST: {
>         LOG.info("Am coming here for cell first strategy");
>         if (authManager.authorize(user, table, cell, Permission.Action.READ) 
> &&
>             authManager.authorize(user, table, family, qualifier, 
> Permission.Action.READ)) {
>           LOG.info("Returning include");
>           return ReturnCode.INCLUDE;
>         }
> {code}
> expects a READ permission on the table for those Users that are granted READ 
> permission on the cell level.
> In 0.98.1
> {code}
> if (authManager.authorize(user, table, cell, cellFirstStrategy, 
> Permission.Action.READ)) {
>       return ReturnCode.INCLUDE;
>     }
> {code}
> So from 0.98.2 onwards IntegrationTestIngestWithACL was failing.  Hence this 
> JIRA is targeted to correct the behaviour and make the IT work again.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Reply via email to