Uploaded image for project: 'Sentry'
  1. Sentry
  2. SENTRY-2481

Filter HMS server-side objects based on HMS user authorization

    Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.2.0
    • Component/s: Sentry
    • Labels:
      None

      Description

      Sentry provides a mechanism to filter HMS objects from users who are not authorized to view certain objects, but this filter happens on the HMS client only. The support for the HMS server-side is needed as there might clients who access the server using Thrift API causing this security concern.

       

      To provide with such support. Sentry should re-use the SentryMetaStoreFilterHook, which will be called by the HMS server, in order to filter the unwanted objects.

        Attachments

        1. SENTRY-2481.3.patch
          74 kB
          Sergio Peña
        2. SENTRY-2481.2.patch
          63 kB
          Sergio Peña
        3. SENTRY-2481.1.patch
          63 kB
          Sergio Peña

          Issue Links

            Activity

              People

              • Assignee:
                spena Sergio Peña
                Reporter:
                spena Sergio Peña
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: