[
https://issues.apache.org/jira/browse/HBASE-5371?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13206655#comment-13206655
]
[email protected] commented on HBASE-5371:
------------------------------------------------------
-----------------------------------------------------------
This is an automatically generated e-mail. To reply, visit:
https://reviews.apache.org/r/3829/#review5043
-----------------------------------------------------------
security/src/main/java/org/apache/hadoop/hbase/security/access/AccessController.java
<https://reviews.apache.org/r/3829/#comment11073>
Optimization was mentioned for the following check.
I was looking for justification of further optimization.
If there're not many permissions passed, maybe optimization isn't needed.
If you know what to optimize, please share.
- Ted
On 2012-02-11 02:58:35, enis wrote:
bq.
bq. -----------------------------------------------------------
bq. This is an automatically generated e-mail. To reply, visit:
bq. https://reviews.apache.org/r/3829/
bq. -----------------------------------------------------------
bq.
bq. (Updated 2012-02-11 02:58:35)
bq.
bq.
bq. Review request for hbase.
bq.
bq.
bq. Summary
bq. -------
bq.
bq. We need to introduce something like
AccessControllerProtocol.checkPermissions(Permission[] permissions) API, so
that clients can check access rights before carrying out the operations. We
need this kind of operation for HCATALOG-245, which introduces authorization
providers for hbase over hcat. We cannot use getUserPermissions() since it
requires ADMIN permissions on the global/table level.
bq.
bq.
bq. This addresses bug HBASE-5371.
bq. https://issues.apache.org/jira/browse/HBASE-5371
bq.
bq.
bq. Diffs
bq. -----
bq.
bq.
security/src/main/java/org/apache/hadoop/hbase/security/access/AccessController.java
5091b7d
bq.
security/src/main/java/org/apache/hadoop/hbase/security/access/AccessControllerProtocol.java
5fa2edb
bq.
security/src/test/java/org/apache/hadoop/hbase/security/access/TestAccessController.java
f864373
bq.
bq. Diff: https://reviews.apache.org/r/3829/diff
bq.
bq.
bq. Testing
bq. -------
bq.
bq.
bq. Thanks,
bq.
bq. enis
bq.
bq.
> Introduce AccessControllerProtocol.checkPermissions(Permission[] permissons)
> API
> --------------------------------------------------------------------------------
>
> Key: HBASE-5371
> URL: https://issues.apache.org/jira/browse/HBASE-5371
> Project: HBase
> Issue Type: Sub-task
> Components: security
> Affects Versions: 0.94.0, 0.92.1
> Reporter: Enis Soztutar
> Assignee: Enis Soztutar
> Attachments: HBASE-5371_v2.patch
>
>
> We need to introduce something like
> AccessControllerProtocol.checkPermissions(Permission[] permissions) API, so
> that clients can check access rights before carrying out the operations. We
> need this kind of operation for HCATALOG-245, which introduces authorization
> providers for hbase over hcat. We cannot use getUserPermissions() since it
> requires ADMIN permissions on the global/table level.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
