Uploaded image for project: 'Sentry'
  1. Sentry
  2. SENTRY-157

Support filter pushdown in DB Store client to reduce data transfer from DB Store service

    XMLWordPrintableJSON

    Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.4.0
    • Fix Version/s: 1.4.0
    • Component/s: None
    • Labels:
      None

      Description

      The authorization provider retrieves all the privileges for the given set of groups. This could be a huge data set if there are a large number of privileges in the system. A downstream consumer like HiveServer2 will be reading this for each query. This could impact the DB store performance if there are multiple active queries and numerous privilege rules.
      We could consider pushing the filters like DB object name to the policy provider to prune the privilege result set at the source.

        Attachments

        1. SENTRY-157.5.patch
          120 kB
          Arun Suresh
        2. SENTRY-157.4.patch
          110 kB
          Arun Suresh
        3. SENTRY-157.3.patch
          110 kB
          Arun Suresh
        4. SENTRY-157.1.patch
          67 kB
          Arun Suresh

          Issue Links

            Activity

              People

              • Assignee:
                asuresh Arun Suresh
                Reporter:
                prasadm Prasad Suresh Mujumdar
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: