[
https://issues.apache.org/jira/browse/HIVE-12698?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15061452#comment-15061452
]
Thejas M Nair commented on HIVE-12698:
--------------------------------------
[~dapengsun] [~Ferd]
I am wondering if the api HiveAuthorizationTranslator, should have methods that
operate on a single element instead of a list of them. That seems more generic
and captures the basic logic -
ie instead of -
{code} public List<HivePrincipal> getHivePrincipals(List<PrincipalDesc>
principals) {code}
have -
{code} public HivePrincipal getHivePrincipals(PrincipalDesc principals) {code}
What are your thoughts ?
> Remove exposure to internal privilege and principal classes in HiveAuthorizer
> -----------------------------------------------------------------------------
>
> Key: HIVE-12698
> URL: https://issues.apache.org/jira/browse/HIVE-12698
> Project: Hive
> Issue Type: Bug
> Components: Authorization
> Affects Versions: 1.3.0, 2.0.0
> Reporter: Thejas M Nair
> Assignee: Thejas M Nair
> Fix For: 1.3.0, 2.0.0
>
> Attachments: HIVE-12698.1.patch
>
>
> The changes in HIVE-11179 expose several internal classes to
> HiveAuthorization implementations. These include PrivilegeObjectDesc,
> PrivilegeDesc, PrincipalDesc and AuthorizationUtils.
> We should avoid exposing that to all Authorization implementations, but also
> make the ability to customize the mapping of internal classes to the public
> api classes possible for Apache Sentry (incubating).
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
