diff --git a/hcatalog/src/test/e2e/templeton/tests/doas.conf b/hcatalog/src/test/e2e/templeton/tests/doas.conf index ccd1269..8408ea0 100644 --- a/hcatalog/src/test/e2e/templeton/tests/doas.conf +++ b/hcatalog/src/test/e2e/templeton/tests/doas.conf @@ -104,12 +104,12 @@ $cfg = { #descbe the table (as the table owner but using doAs) - #this should succeed (it seems reading metadata is allowed even if reading data is not) + #this should fail when using StorageBasedAuthorizationProvider 'num' => 6, 'method' => 'GET', 'url' => ':TEMPLETON_URL:/templeton/v1/ddl/database/default/table/:UNAME:_doastab2/partition?user.name=:UNAME:?doAs=:DOAS:', - 'status_code' => 200, - 'json_field_substr_match' => {'database' => 'default', 'table' => ':UNAME:_doastab2'}, + 'status_code' => 500, + 'json_field_substr_match' => {'error' => 'FAILED: AuthorizationException java\.security\.AccessControlException: action READ not permitted on path .* for user :UNAME:\?doAs=:DOAS:'}, }, { @@ -118,7 +118,7 @@ $cfg = 'method' => 'DELETE', 'url' => ':TEMPLETON_URL:/templeton/v1/ddl/database/default/table/:UNAME:_doastab2?user.name=:UNAME:&doAs=:DOAS:', 'status_code' => 500, - 'json_field_substr_match' => {'error' => 'FAILED: Execution Error, return code 1 from org\.apache\.hadoop\.hive\.ql\.exec\.DDLTask\. MetaException\(message:java\.security\.AccessControlException: action WRITE not permitted on path.* for user :DOAS:\)'}, + 'json_field_substr_match' => {'error' => 'Authorization failed:java\.security\.AccessControlException: action WRITE not permitted on path .* for user :DOAS:'}, }, { #descbe the table....