[
https://issues.apache.org/jira/browse/HBASE-6192?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14033034#comment-14033034
]
Andrew Purtell commented on HBASE-6192:
---------------------------------------
You should grep for the use of the Permission.Action constants in
hbase-server/src/main/java/org/apache/hadoop/hbase/security/access/AccessController.java
to catch all cases.
bq. Is there a reason that Compact requires different permissions from
CompactSelection?
That looks like someone cut and pasted the access check from preCompact() at
one time and another change came later and relaxed permissions for compaction
from ADMIN to ADMIN|CREATE, but that certainly won't work if compaction
selection is disallowed. I don't think we need an access check in
preCompactSelection since a request to compact is already mediated by
preCompact.
> Document ACL matrix in the book
> -------------------------------
>
> Key: HBASE-6192
> URL: https://issues.apache.org/jira/browse/HBASE-6192
> Project: HBase
> Issue Type: Task
> Components: documentation, security
> Affects Versions: 0.94.1, 0.95.2
> Reporter: Enis Soztutar
> Assignee: Misty Stanley-Jones
> Labels: documentaion, security
> Fix For: 0.99.0
>
> Attachments: HBASE-6192-rebased.patch, HBASE-6192.patch, HBase
> Security-ACL Matrix.pdf, HBase Security-ACL Matrix.pdf, HBase Security-ACL
> Matrix.pdf, HBase Security-ACL Matrix.xls, HBase Security-ACL Matrix.xls,
> HBase Security-ACL Matrix.xls
>
>
> We have an excellent matrix at
> https://issues.apache.org/jira/secure/attachment/12531252/Security-ACL%20Matrix.pdf
> for ACL. Once the changes are done, we can adapt that and put it in the
> book, also add some more documentation about the new authorization features.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
