[
https://issues.apache.org/jira/browse/SENTRY-1547?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15749635#comment-15749635
]
kalyan kumar kalvagadda commented on SENTRY-1547:
-------------------------------------------------
SENTRY-1547.002.patch
I had to take a different approach in solving the issue based on the review
comments. I have added validation logic in SentryPolicyStoreProcessor enforcing
the mandatory fields like server_name and action to be present in
privilege/privileges added.
> It is possible to create a privilege with all empty fields
> ----------------------------------------------------------
>
> Key: SENTRY-1547
> URL: https://issues.apache.org/jira/browse/SENTRY-1547
> Project: Sentry
> Issue Type: Bug
> Components: Sentry
> Affects Versions: 1.8.0, sentry-ha-redesign
> Reporter: Alexander Kolbasov
> Assignee: kalyan kumar kalvagadda
> Priority: Minor
> Labels: bite-sized
> Attachments: SENTRY-1547.001.patch
>
>
> It is possible (at least by sending Thrift message) to create privilege with
> everything set to __NULL__ which is a pretty useless privilege. We should
> check that at least some fields are set.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
