[
https://issues.apache.org/jira/browse/SENTRY-722?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14557746#comment-14557746
]
Ted Malaska commented on SENTRY-722:
------------------------------------
OK started this today.
I may need a little help focusing on the right classes.
-I'm starting at HiveAuthzBinding and I see the TODO request to add URL
validation.
-I also see in AccessURI some basic validation that if fails will through
IllegalArgumentException.
- For the validation of the fully validated path. I was going to look to
Hadoop's FileSystem checkPath as a reference.
So Questions:
- Would you like all AccessURI to be fully qualified?
- If not does it make sense to make the fully qualified validation method in
the AccessURI class then call it when the validation is required?
- What are all the classes you would like to see this validation.
HiveAuthzBinging, and what else?
> Grant on URI should validate the required resource string format
> ----------------------------------------------------------------
>
> Key: SENTRY-722
> URL: https://issues.apache.org/jira/browse/SENTRY-722
> Project: Sentry
> Issue Type: Bug
> Components: Hive Plugin
> Affects Versions: 1.4.0, 1.5.0
> Reporter: Prasad Mujumdar
> Assignee: Ted Malaska
>
> The URI privilege grant requires the URI to be a fully qualified resource
> path, ie hdfs://NN:Port/Path or file:///path. The Hive plugin or DB provider
> should validate the format and raise error if the URI is not correctly
> formatted.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
