[ https://issues.apache.org/jira/browse/HIVE-78?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12755876#action_12755876 ]
Min Zhou commented on HIVE-78: ------------------------------ we will take over this issue, it would be finished in two weeks. Here are the sql statements will be added: {noformat} CREATE USER, DROP USER; ALTER USER SET PASSOWRD; GRANT; REVOKE {noformat} Metadata is stored at some sort of persistent media such as mysql DBMS through jdo. We will add three tables for this issue, they are USER, DBS_PRIV, TABLES_PRIV. Privileges can be granted at several levels, each table above are corresponding to a privilege level. # Global level Global privileges apply to all databases on a given server. These privileges are stored in the USER table. GRANT ALL ON *.* and REVOKE ALL ON *.* grant and revoke only global privileges. GRANT ALL ON *.* TO 'someuser'; GRANT SELECT, INSERT ON *.* TO 'someuser'; # Database level Database privileges apply to all objects in a given database. These privileges are stored in the DBS_PRIV table. GRANT ALL ON db_name.* and REVOKE ALL ON db_name.* grant and revoke only database privileges. GRANT ALL ON mydb.* TO 'someuser'; GRANT SELECT, INSERT ON mydb.* TO 'someuser'; Although we can't create DBs currently, it would take a reserved place till hive support. # Table level Table privileges apply to all columns in a given table. These privileges are stored in the TABLES_PRIV table. GRANT ALL ON db_name.tbl_name and REVOKE ALL ON db_name.tbl_name grant and revoke only table privileges. GRANT ALL ON mydb.mytbl TO 'someuser'; GRANT SELECT, INSERT ON mydb.mytbl TO 'someuser'; Hive account information is stored in USER table, includes username, password and kinds of privileges. User who has been granted any privilege to, such as select/insert/drop on a particular table, always have a right to show that table. > Authentication infrastructure for Hive > -------------------------------------- > > Key: HIVE-78 > URL: https://issues.apache.org/jira/browse/HIVE-78 > Project: Hadoop Hive > Issue Type: New Feature > Components: Server Infrastructure > Reporter: Ashish Thusoo > Assignee: Edward Capriolo > Attachments: hive-78.diff > > > Allow hive to integrate with existing user repositories for authentication > and authorization infromation. -- This message is automatically generated by JIRA. - You can reply to this email to add a comment to the issue online.