[ https://issues.apache.org/jira/browse/HBASE-5385?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13268999#comment-13268999 ]
Andrew Purtell commented on HBASE-5385: --------------------------------------- +1 looks good. bq. Maybe we can open another jira for this, to implement the exists check on grant and verify in all pre* if there's nothing left. This is a good idea since it's a different problem scope than this jira. > Delete table/column should delete stored permissions on -acl- table > --------------------------------------------------------------------- > > Key: HBASE-5385 > URL: https://issues.apache.org/jira/browse/HBASE-5385 > Project: HBase > Issue Type: Sub-task > Components: security > Affects Versions: 0.94.0 > Reporter: Enis Soztutar > Assignee: Matteo Bertozzi > Attachments: HBASE-5385-v0.patch, HBASE-5385-v1.patch > > > Deleting the table or a column does not cascade to the stored permissions at > the -acl- table. We should also remove those permissions, otherwise, it can > be a security leak, where freshly created tables contain permissions from > previous same-named tables. We might also want to ensure, upon table > creation, that no entries are already stored at the -acl- table. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa For more information on JIRA, see: http://www.atlassian.com/software/jira