Details
-
Test
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
-
None
Description
The policyFile is not set correctly.
Currently, the privilege is set by the following code, "server=server1->db=db_1->table=*->action=SELECT", and the value of table is "*". The method List<MSentryPrivilege> getMSentryPrivileges(Set<String> roleNames, TSentryAuthorizable authHierarchy) in SentryStore can't get this privilege.
.addPermissionsToRole(db_all_role, "server=server1->db=" + dbName) .addPermissionsToRole("read_db_role", "server=server1->db=" + dbName + "->table=*->action=SELECT")
The error setting cause the following exception,
try { execPigLatin(USER2_1, pigServer, "store A into '" + dbName + "." + tabName + "' using " + HCatStorer.class.getName() + " ('part_col=part2');"); fail("USER2_1 has no access to the metadata, exception will be thrown."); } catch (IOException e) { // ignore the exception }
Attachments
Attachments
Issue Links
- blocks
-
SENTRY-565 Improve performance of filtering Hive SHOW commands
- Resolved
- links to