[RANGER-4723] USE <database> fails even when the user has permission on some tables in the database - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 3.0.0, 2.5.0
Component/s: plugins
Labels:
None

Description

Consider the following scenario:

a resource-based policy allows user user1 select access to all tables in database db1
tables with name starting with "test" in database db1 are added to security-zone test_zone

Note that user1 doesn't have any access to tables in zone test_zone. However, the user has access to all other tables in database db1 via policy created in #1 above. So, USE db1; command should be allowed for the user. However, the user is denied.

> use db1;
Error: Error while compiling statement: FAILED: HiveAccessControlException Permission denied: user [user1] does not have [USE] privilege on [db1] (state=42000,code=40000)

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

RANGER-4723.patch
21/Feb/24 23:10
3 kB
Madhan Neethiraj

Activity

People

Assignee:: Madhan Neethiraj

Reporter:: Madhan Neethiraj

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 21/Feb/24 22:56

Updated:: 21/Jun/24 15:01

Resolved:: 22/Feb/24 01:27