[jira] [Created] (IMPALA-13681) Do not enforce the policies defined in the repository of Hadoop SQL when we have 'ranger.plugin.hive.urlauth.filesystem.schemes' in Ranger's configuration file

Fang-Yu Rao (Jira) Mon, 20 Jan 2025 16:40:05 -0800

Fang-Yu Rao created IMPALA-13681:
------------------------------------

             Summary: Do not enforce the policies defined in the repository of 
Hadoop SQL when we have 'ranger.plugin.hive.urlauth.filesystem.schemes' in 
Ranger's configuration file
                 Key: IMPALA-13681
                 URL: https://issues.apache.org/jira/browse/IMPALA-13681
             Project: IMPALA
          Issue Type: Task
            Reporter: Fang-Yu Rao
            Assignee: Fang-Yu Rao



Apache Ranger has defined a configuration 
'ranger.plugin.hive.urlauth.filesystem.schemes' that allows a Ranger plug-in to 
skip enforcing the Hadoop SQL policies defined on the URL in a SQL statement as 
shown in 
[RangerHiveAuthorizer.java|https://github.com/apache/ranger/blob/master/hive-agent/src/main/java/org/apache/ranger/authorization/hive/authorizer/RangerHiveAuthorizer.java].

It may be a good idea for Impala to do so to align Impala with Hive with 
respect to authorization of the URL involved in the given SQL statement.




--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Created] (IMPALA-13681) Do not enforce the policies defined in the repository of Hadoop SQL when we have 'ranger.plugin.hive.urlauth.filesystem.schemes' in Ranger's configuration file

Reply via email to