Uploaded image for project: 'Hadoop Common'
  1. Hadoop Common
  2. HADOOP-15619 Über-JIRA: S3Guard Phase IV: Hadoop 3.3 features
  3. HADOOP-16250

Add a way to declare a toplevel path in a non-auth FS as auth

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Resolved
    • Minor
    • Resolution: Duplicate
    • 3.3.0
    • 3.3.0
    • fs/s3
    • None

    Description

      Feature request from the Hive team. Add a way to declare that some part of a bucket is auth, while the rest of it isn't

      This is pretty dangerous if you can start declaring arbitrary paths auth/non-auth, so here is my proposal

      • bucket is considered non-auth
      • only a single path is declared auth, after which all files under it will also be auth
      • that path must be a single path element off root
      • only operations which act within that path are auth.
      • operations outside that path are non-auth
      • anything which mixes (rename) is non-auth
      • Lists on / are non-auth too.
      • If a path is configured and it is not there, then everything is non-auth (i.e. its not an error, we just ignore the setting)

      There's ~10 places in S3AFileSystem which could be changed from "isAuthoritative" to isAuthoritative(path); for rename we'd chedk src and dest

      thoughts?

      Attachments

        Issue Links

          is superceded by

          Improvement - An improvement or enhancement to an existing feature or task. HADOOP-16409 Allow authoritative mode on non-qualified paths

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              mackrorysd Sean Mackrory
              stevel@apache.org Steve Loughran
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: