[SPARK-37266] View text can only be SELECT queries - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 3.3.0
Fix Version/s: 3.3.0
Component/s: SQL
Labels:
None

Description

The current implementation of persistent view is create hive table with view text.
The view text is just a query string, so the hackers may tamper with it through various means.
Such as:

select * from tab1

tampered with

drop table tab1

Attachments

Issue Links

links to

[Github] Pull Request #34543 (beliefer)

Activity

People

Assignee:: Jiaan Geng

Reporter:: Jiaan Geng

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 10/Nov/21 08:24

Updated:: 15/Nov/21 14:49

Resolved:: 15/Nov/21 14:49