Sai Hemanth Gantasala created HIVE-25547: --------------------------------------------
Summary: Alter view as Select statement should create Authorizable events in HiveServer2 Key: HIVE-25547 URL: https://issues.apache.org/jira/browse/HIVE-25547 Project: Hive Issue Type: Bug Affects Versions: 4.0.0 Reporter: Sai Hemanth Gantasala Assignee: Sai Hemanth Gantasala Consider the scenario: {code:java} -- A privileged user is doing the following actions. Create table foo_tbl(i int); Create table foo_bar(name string); Create view foo_view as select * from foo_tbl; -- An unprivileged user can do the following operation, when he/she has select privileges on foo_bar table but he/she doesn't have any privileges on foo_tbl or foo_view. alter view foo_view as select * from foo_bar;{code} An unauthorized user shouldn't be able to alter the view schema when he/she doesn't have any privileges on that view. -- This message was sent by Atlassian Jira (v8.3.4#803005)