Dapeng Sun created SENTRY-1067:
----------------------------------
Summary: Exclude capability for privilege
Key: SENTRY-1067
URL: https://issues.apache.org/jira/browse/SENTRY-1067
Project: Sentry
Issue Type: New Feature
Reporter: Dapeng Sun
Assignee: Dapeng Sun
Currently Sentry can only grant privileges to object, in some cases, only some
sensitive data need to be protected. Adding exclude capability can simplify the
management of access control.
For example, the table "employee" have many columns, the column likes
"username", "contact" and other information can be queried by others,but the
column "salary" can only be queried by specific user.
With exclude capability, we can grant privilege of table "employee" to user and
block the column "salary".
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
