steveloughran commented on PR #15428: URL: https://github.com/apache/iceberg/pull/15428#issuecomment-4019232593
@danielcweeks it'd be hard to read a parquet file with a signing service restricting range access, not least because that service would need to be aware of the layout of the specific .par files. Restricting avro access is possible. But if the service was signing ranges, then it'd have to decide what to do if the range wasn't specified, as otherwise a client would just bypass any restrictions by not passing in the range. Presumably the service would have to reject the request as "incomplete headers" Which is out of scope of the current PR that simply expands the set of ignored headers. It might be useful to add as a response to the API specification though, somehow. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
