The documentation of Impala's support for Sentry authorization on Kudu tables, available here:
is out of date. It should be updated to include the changes made in
IMPALA-5489. In particular:
- Access is no longer "all or nothing" - we support column-level permissions
- Permissions do not apply "to all SQL operations" - we support SELECT- and INSERT-specific permissions. DELETE/UPDATE/UPSERT still require ALL
We should also document that "all on server" is required to specify "kudu.master_addresses" in a CREATE, even for managed tables, in addition to be required to CREATE any external table.