Details
-
New Feature
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
Description
As we introduced ad-hoc queries in https://issues.apache.org/jira/browse/KYLIN-2515, we'll need to adjust query authorization as follows:
Query authorization is encouraged to be set as project level. If someone is assigned READ permission on project, then he has access to query all tables in the project, regardless thru adhoc or cubes
If a user has READ permission on cubes but no READ permission on project. He can only issue queries only if the query can be satisfied by those cubes he has READ permission.