[SENTRY-150] Support various SHOW commands - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Sub-task
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 1.4.0
Component/s: None
Labels:
None

Description

Specifically, I think we have to implement

SHOW ROLES
SHOW GRANT ROLE xxx ON [SERVER, DATABASE, TABLE, URI] xxx
SHOW ROLE GRANT GROUP xxxx.

The following is the output of testing hive with these commands

> CREATE ROLE r1;
> GRANT ROLE r1 to GROUP staff;
> GRANT ALL ON DATABASE default TO ROLE r1;
> SHOW GRANT ROLE r1 ON DATABASE default; 
default                    r1     ROLE     All     false     1395109913000     noland
> CREATE TABLE t1 (c1 string)

> GRANT ALL ON TABLE t1 TO ROLE r1;
> SHOW GRANT ROLE r1 ON TABLE t1;       
default     t1               r1     ROLE     All     false     1395110129000     noland

      appendNonNull(builder, resource.getDbName(), true);
      appendNonNull(builder, resource.getObjectName());
      appendNonNull(builder, resource.getPartValues());
      appendNonNull(builder, resource.getColumnName());
      appendNonNull(builder, privilege.getPrincipalName());
      appendNonNull(builder, privilege.getPrincipalType());
      appendNonNull(builder, grantInfo.getPrivilege());
      appendNonNull(builder, grantInfo.isGrantOption());
      appendNonNull(builder, testMode ? -1 : grantInfo.getCreateTime() * 1000L);
      appendNonNull(builder, grantInfo.getGrantor());

> SHOW ROLE GRANT GROUP staff;
r1     1395109787000     staff     GROUP     false     1395109830000     noland

      appendNonNull(builder, role.getRoleName(), true);
      appendNonNull(builder, testMode ? -1 : role.getCreateTime() * 1000L);
      appendNonNull(builder, role.getPrincipalName());
      appendNonNull(builder, role.getPrincipalType());
      appendNonNull(builder, role.isGrantOption());
      appendNonNull(builder, testMode ? -1 : role.getGrantTime() * 1000L);
      appendNonNull(builder, role.getGrantor());

> SHOW ROLES;
r1
        for (String roleName : roleNames) {
          outStream.writeBytes(roleName);
          outStream.write(terminator);

>SHOW CURRENT ROLES;
list of roles current set from SET ROLE statement

+      List<HiveRole> currentRoles = authorizer.getCurrentRoles();
+      List<String> roleNames = new ArrayList<String>(currentRoles.size());
+      for (HiveRole role : currentRoles) {
+        roleNames.add(role.getRoleName());
+      }
+      writeListToF

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SENTRY-150.0.patch
06/May/14 01:03
20 kB
Sravya Tirukkovalur
SENTRY-150.1.patch
15/May/14 19:00
25 kB
Sravya Tirukkovalur
SENTRY-150.2.patch
16/May/14 23:05
26 kB
Sravya Tirukkovalur

Issue Links

depends upon

SENTRY-184 Add Sentry service APIs to query roles and privileges

Resolved

incorporates

SENTRY-165 Implement createShowRolesTask() in SentryHiveAuthorizationTaskFactoryImpl

Resolved

SENTRY-184 Add Sentry service APIs to query roles and privileges

Resolved

relates to

SENTRY-215 SHOW GRANT ROLE xxx ON [SERVER, DATABASE, TABLE, URI] xxx

Resolved

SENTRY-216 Support SHOW CURRENT ROLES

Resolved

links to

Review link

(1 links to)

Activity

People

Assignee:: Sravya Tirukkovalur

Reporter:: Brock Noland

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 18/Mar/14 02:14

Updated:: 17/May/14 00:09

Resolved:: 17/May/14 00:09