Uploaded image for project: 'Hive'
  1. Hive
  2. HIVE-2876

Need more server side authorization for Hive Metastore operations

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • None
    • None
    • Metastore

    Description

      Currently the metastore client performs the authorization by checking hdfs acls before talking to metastore server which is controlled by hive.security.authorization.enabled setting. Server only does authorization checks for drop operations (HIVE-1943). Need authorization checks for add and alter operations on the server side for better security.

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. HIVE-2241 Thrift MetaStore interface bypasses authorization checks

          • Major - Major loss of function.
          • Open

          Activity

            People

              Unassigned Unassigned
              rohini Rohini Palaniswamy
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: