Uploaded image for project: 'Ranger'
  1. Ranger
  2. RANGER-4723

USE <database> fails even when the user has permission on some tables in the database

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 3.0.0, 2.5.0
    • plugins
    • None

    Description

      Consider the following scenario:

      1. a resource-based policy allows user user1 select access to all tables in database db1
      2. tables with name starting with "test" in database db1 are added to security-zone test_zone

      Note that user1 doesn't have any access to tables in zone test_zone. However, the user has access to all other tables in database db1 via policy created in #1 above. So, USE db1; command should be allowed for the user. However, the user is denied.

       

      > use db1;
      Error: Error while compiling statement: FAILED: HiveAccessControlException Permission denied: user [user1] does not have [USE] privilege on [db1] (state=42000,code=40000) 

      Attachments

        1. RANGER-4723.patch
          3 kB
          Madhan Neethiraj

        Activity

          People

            madhan Madhan Neethiraj
            madhan Madhan Neethiraj
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: