Uploaded image for project: 'Cassandra'
  1. Cassandra
  2. CASSANDRA-8163

Re-introduce DESCRIBE permission

Log workAgile BoardRank to TopRank to BottomAttach filesAttach ScreenshotAdd voteVotersWatch issueWatchersCreate sub-taskConvert to sub-taskMoveLinkCloneLabelsUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Low
    • Resolution: Unresolved
    • Fix Version/s: 4.x
    • Component/s: Legacy/CQL
    • Labels:

      Description

      We have a cluster like this:

      project1_keyspace
      table101
      table102

      project2_keyspace
      table201
      table202

      We have set up following users and grants:

      project1_user has all access to project1_keyspace
      project2_user has all access to project2_keyspace

      However project1_user can still do a 'describe schema' and get the schema for project2_keyspace as well. We do not want project1_user to have any knowledge for project2 in any way (cqlsh/java-driver etc) .

        Attachments

        Issue Links

          Activity

          $i18n.getText('security.level.explanation', $currentSelection) Viewable by All Users
          Cancel

            People

              Dates

              • Created:
                Updated:

                Issue deployment