[
https://issues.apache.org/jira/browse/HBASE-11013?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16007616#comment-16007616
]
stack commented on HBASE-11013:
-------------------------------
bq. For AccessControl.proto under hbase-protocol-shaded, we only use it for
serializing/deserializing user's permission in .snapshotinfo, and CPEP still
use AccessControl.proto under hbase-protocol. So old CPEPs will work fine.
Ok. You are clear that AccessControl messages that come in over the endpoint
will be different to the AccessControl we get out of a Snapshot... The protobuf
Messages are not interchangeable. As long as the two never meet (or if they do,
there is a convertion from one to the other) then it should be fine.
> Clone Snapshots on Secure Cluster Should provide option to apply Retained
> User Permissions
> ------------------------------------------------------------------------------------------
>
> Key: HBASE-11013
> URL: https://issues.apache.org/jira/browse/HBASE-11013
> Project: HBase
> Issue Type: Improvement
> Components: snapshots
> Reporter: Ted Yu
> Assignee: Zheng Hu
> Fix For: 2.0.0
>
> Attachments: HBASE-11013.master.addendum.patch, HBASE-11013.v1.patch,
> HBASE-11013.v2.patch
>
>
> Currently,
> {code}
> sudo su - test_user
> create 't1', 'f1'
> sudo su - hbase
> snapshot 't1', 'snap_one'
> clone_snapshot 'snap_one', 't2'
> {code}
> In this scenario the user - test_user would not have permissions for the
> clone table t2.
> We need to add improvement feature such that the permissions of the original
> table are recorded in snapshot metadata and an option is provided for
> applying them to the new table as part of the clone process.
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
