[
https://issues.apache.org/jira/browse/HIVE-21753?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17705035#comment-17705035
]
Ramesh Mani commented on HIVE-21753:
------------------------------------
Hi Yubi,
Yes , it should work with Kerberos. Do you pass the keytab and principal in
the spark job?
Thanks,
Ramesh
--
Regards,
Ramesh
> Update HiveMetastore authorization to enable use of HiveAuthorizer
> implementation
> ---------------------------------------------------------------------------------
>
> Key: HIVE-21753
> URL: https://issues.apache.org/jira/browse/HIVE-21753
> Project: Hive
> Issue Type: Bug
> Components: Hive
> Affects Versions: 3.1.2
> Reporter: Ramesh Mani
> Assignee: Ramesh Mani
> Priority: Critical
> Labels: pull-request-available
> Fix For: 4.0.0-alpha-1
>
> Attachments: HIVE-21753.1.patch, HIVE-21753.2.patch,
> HIVE-21753.3.patch, HIVE-21753.4.patch, HIVE-21753.5.patch,
> HIVE-21753.6.patch, HIVE-21753.7.patch
>
> Time Spent: 5h 50m
> Remaining Estimate: 0h
>
> Currently HMS supports authorization using StorageBasedAuthorizationProvider
> which relies on permissions at filesystem – like HDFS. Hive supports a
> pluggable authorization interface, and multiple authorizer implementations
> (like SQLStd, Ranger, Sentry) are available to authorizer access in Hive.
> Extending HiveMetastore to use the same authorization interface as Hive will
> enable use of pluggable authorization implementations; and will result in
> consistent authorization across Hive, HMS and other services that use HMS
> (like Spark).
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
