[SENTRY-157] Support filter pushdown in DB Store client to reduce data transfer from DB Store service - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.4.0
Fix Version/s: 1.4.0
Component/s: None
Labels:
None

Description

The authorization provider retrieves all the privileges for the given set of groups. This could be a huge data set if there are a large number of privileges in the system. A downstream consumer like HiveServer2 will be reading this for each query. This could impact the DB store performance if there are multiple active queries and numerous privilege rules.
We could consider pushing the filters like DB object name to the policy provider to prune the privilege result set at the source.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

SENTRY-157.1.patch
28/May/14 22:52
67 kB
Arun Suresh
SENTRY-157.3.patch
30/May/14 14:13
110 kB
Arun Suresh
SENTRY-157.4.patch
30/May/14 14:16
110 kB
Arun Suresh
SENTRY-157.5.patch
30/May/14 22:41
120 kB
Arun Suresh

Issue Links

blocks

SENTRY-215 SHOW GRANT ROLE xxx ON [SERVER, DATABASE, TABLE, URI] xxx

Resolved

breaks

SENTRY-246 Load command does not seem to work with filter push down

Resolved

SENTRY-249 "Use default" should be allowed for all the users even when using filter push down

Resolved

SENTRY-250 Create external table fails with filter push down

Resolved

contains

SENTRY-234 Allow Sentry service to accept Server/Db/Table/URI in the listPrivileges API

Resolved

depends upon

SENTRY-37 Implement a DB backed policy store

Resolved

is related to

SENTRY-234 Allow Sentry service to accept Server/Db/Table/URI in the listPrivileges API

Resolved

(1 depends upon, 1 is related to)

Activity

People

Assignee:: Arun Suresh

Reporter:: Prasad Suresh Mujumdar

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 25/Mar/14 02:36

Updated:: 22/Jul/14 00:52

Resolved:: 31/May/14 02:26