Uploaded image for project: 'Sentry'
  1. Sentry
  2. SENTRY-74

Add column-level privileges for Hive/Impala

    XMLWordPrintableJSON

    Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 1.3.0
    • Fix Version/s: 1.5.0
    • Component/s: None
    • Labels:
      None

      Description

      Currently the finest grain of privilege is at the table/view level. This leads to the unwieldy scenario where a different view has to be created for each combination of columns that need to be restricted. With column level privileges this would not be required.

      In the policy file column privileges might potentially look like:

      server=server1->db=default->table=employees->column=salary->action=select

        Attachments

        1. Design Document of Column-Level Access Control_v1.pdf
          346 kB
          Dapeng Sun
        2. SENTRY-74.003.patch
          291 kB
          Dapeng Sun
        3. SENTRY-74.004.patch
          292 kB
          Dapeng Sun
        4. SENTRY-74.005.patch
          334 kB
          Dapeng Sun
        5. SENTRY-74.006.patch
          332 kB
          Dapeng Sun
        6. SENTRY-74.007.patch
          332 kB
          Dapeng Sun
        7. SENTRY-74.2.patch
          263 kB
          Dapeng Sun
        8. SENTRY-74.patch
          258 kB
          Dapeng Sun

          Issue Links

          There are no Sub-Tasks for this issue.

            Activity

              People

              • Assignee:
                dapengsun Dapeng Sun
                Reporter:
                rem120 Jeremy Beard
              • Votes:
                0 Vote for this issue
                Watchers:
                11 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: