Uploaded image for project: 'HBase'
  1. HBase
  2. HBASE-11481

TableSnapshotInputFormat javadoc wrongly claims HBase "enforces security"

    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 0.99.0, 0.98.4
    • Component/s: None
    • Labels:
      None
    • Hadoop Flags:
      Reviewed

      Description

      In the Javadoc for TableSnapshotInputFormat, we have this:

      HBase also enforces security because all the requests are handled by the server layer, and the user cannot read from the data files directly.

      The snapshot input format operates on HFiles directly, that's how it gains its performance benefits. No requests are handled by the 'server layer'.

      Later the Javadoc correctly states the implications:

      Note that, given other users access to read from snapshot/data files will completely circumvent the access control enforced by HBase.

        Attachments

        1. HBASE-11481.patch
          1 kB
          Andrew Kyle Purtell

          Activity

            People

            • Assignee:
              apurtell Andrew Kyle Purtell
              Reporter:
              apurtell Andrew Kyle Purtell
            • Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: