[
https://issues.apache.org/jira/browse/PHOENIX-7069?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17793531#comment-17793531
]
ASF GitHub Bot commented on PHOENIX-7069:
-----------------------------------------
palashc commented on PR #1749:
URL: https://github.com/apache/phoenix/pull/1749#issuecomment-1842206508
@shahrs87 Permission*ITs fail because a regular user created in these tests
does not have permissions to list the decom region servers i.e.
`admin.getRegionServers()` works but `admin.getRegionServers(true)` does not.
Does it make sense to give `Permission.Action.ADMIN` access to the regular user
in these tests? Is there a lesser privileged set of perms I can give the user?
What kind of perms do clients have in production?
CC: @virajjasani if you can clarify some of these things, it will be very
helpful.
> Initializing list of live region servers in CQSI.init causes failures in
> Permission related ITs
> -----------------------------------------------------------------------------------------------
>
> Key: PHOENIX-7069
> URL: https://issues.apache.org/jira/browse/PHOENIX-7069
> Project: Phoenix
> Issue Type: Sub-task
> Reporter: Palash Chauhan
> Assignee: Palash Chauhan
> Priority: Major
>
> As part of metadata caching redesign, we pick a random live region server to
> validate last ddl timestamps on the read/write path. To avoid a master RPC
> for every request, we can cache a list of live region servers when CQSI is
> initialized. Doing this in CQSI.init() causes test failures in
> Permission*ITs.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
