The default authorization model of Hive supports a traditional RDBMS style of authorization based on users, groups and roles and granting them permissions to do operations on database or table. It is descibed in more detail in https://cwiki.apache.org/Hive/languagemanual-auth.html.
+The default authorization model of Hive supports a traditional RDBMS style of authorization based on users, groups and roles and granting them permissions to do operations on database or table. It is described in more detail in Hive Authorization.
This RDBMS style of authorization is not very suitable for the typical use cases in Hadoop because of the following differences in implementation:
@@ -66,6 +66,11 @@Details of HDFS permissions are given here: HDFS Permissions Guide.
+ + +The following table shows the minimum permissions required for Hive operations under this authorization model:
@@ -147,6 +152,18 @@
DDL statements that manage permissions for Hive's default authorization model do not have any effect on permissions in the storage-based model.
+ +All GRANT and REVOKE statements for users, groups, and roles are ignored. See the Known Issues section below.
+ +hdfs chmod" command will be necessary to modify the permissions.