[HBASE-19334] User.runAsLoginUser not work in AccessController because it use a short circuited connection - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Patch Available
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Description

The short-circuited connection will bypass the RPC and the RPC context didn't change. So it still use the old RPC user to write ACL table and User.runAsLoginUser not work.

AccessController's grant method.

        User.runAsLoginUser(new PrivilegedExceptionAction<Void>() {
          @Override
          public Void run() throws Exception {
            // regionEnv is set at #start. Hopefully not null at this point.
            try (Table table = regionEnv.getConnection().
                getTable(AccessControlLists.ACL_TABLE_NAME)) {
              AccessControlLists.addUserPermission(regionEnv.getConfiguration(), perm, table,
                  request.getMergeExistingPermissions());
            }
            return null;
          }
        });

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

HBASE-19334.master.001.patch
23/Nov/17 08:40
27 kB
Guanghao Zhang

Issue Links

links to

Review Board (master)

Activity

People

Assignee:: Guanghao Zhang

Reporter:: Guanghao Zhang

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 22/Nov/17 23:21

Updated:: 24/Nov/17 07:11