Andrew Purtell created HBASE-11481:
--------------------------------------
Summary: TableSnapshotInputFormat javadoc wrongly claims HBase
"enforces security"
Key: HBASE-11481
URL: https://issues.apache.org/jira/browse/HBASE-11481
Project: HBase
Issue Type: Bug
Reporter: Andrew Purtell
Assignee: Andrew Purtell
Fix For: 0.99.0
In the Javadoc for TableSnapshotInputFormat, we have this:
{quote}
HBase also enforces security because all the requests are handled by the server
layer, and the user cannot read from the data files directly.
{quote}
The snapshot input format operates on HFiles directly, that's how it gains its
performance benefits. No requests are handled by the 'server layer'.
Later the Javadoc correctly states the implications:
{quote}
Note that, given other users access to read from snapshot/data files will
completely circumvent the access control enforced by HBase.
{quote}
--
This message was sent by Atlassian JIRA
(v6.2#6252)
