[
https://issues.apache.org/jira/browse/HBASE-15942?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15312733#comment-15312733
]
Matteo Bertozzi commented on HBASE-15942:
-----------------------------------------
I haven't checked the patch yet (I'll promise I'll do that later).
the only reason we have only ADMIN/CREATE able to describe the table is because
we don't want to leak the descriptor to people that has only permission to
read/write a single qualifier.
there may also be a reason that we don't want to expose some "config" passed to
the table descriptors to the user.
for the second we may need to add filtering to the various getters we have in
HTD/HCD. and maybe not worth at this point?
for the first one in theory is possible to have users that have access to every
cfs see the descriptor (which I guess is what your patch does, again I'll give
it a look at it later).
> User with 'RWX' permission of the table should be able to describe the table
> ----------------------------------------------------------------------------
>
> Key: HBASE-15942
> URL: https://issues.apache.org/jira/browse/HBASE-15942
> Project: HBase
> Issue Type: Bug
> Components: Admin
> Reporter: Guang Yang
> Priority: Minor
> Attachments: HBASE-15942.v0.patch
>
>
> Currently only the user who has 'ADMIN' or 'CREATE' permission could describe
> the table (via shell), it brings some inconvenience and confusion to those
> uses who have RWX permission since they couldn't describe the table to get
> the schema.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
