[
https://issues.apache.org/jira/browse/TAJO-600?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14970523#comment-14970523
]
Jihoon Son commented on TAJO-600:
---------------------------------
In addition, we have to separate authentication and authorization.
For authorization, IMO, the following features should be supported.
*Permissions*
* Login
** For each role
** For each IP
* Query execution
** Type
*** DDL
*** DML
** Target
*** Tablespace
*** Database
*** Table
*** Column
*** Function
* Killing query
* Listing query
* Web access
** Access permission to each cluster node
* Cluster information
> (Umbrella) Tajo Authentication
> ------------------------------
>
> Key: TAJO-600
> URL: https://issues.apache.org/jira/browse/TAJO-600
> Project: Tajo
> Issue Type: New Feature
> Reporter: Min Zhou
> Assignee: Jihoon Son
> Fix For: 0.12.0
>
> Attachments: auth.png
>
>
> Tajo should have the ability to identify its users, otherwise, we can't fair
> share the resource between users' queries, we can't do authorization to
> control the privilege of each user, we can't do auditing.. a lot of things.
> CJ, who is an expert in this area and who is also the author of Azkaban,
> would like to join us to add this feature.
> [~yu.chenjie]
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
