[
https://issues.apache.org/jira/browse/HIVE-7294?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14054311#comment-14054311
]
Thejas M Nair commented on HIVE-7294:
-------------------------------------
Yes, this is applicable to both 'show grant' and 'show role grant'
This is applicable only to sql standard based authorization.
If a user is not in admin role, the user can run show grants only using a
itself as the principal or a role the user belongs to as the principal. The
show grant statements without principal names are not allowed for users not in
admin role.
> sql std auth - authorize show grant statements
> ----------------------------------------------
>
> Key: HIVE-7294
> URL: https://issues.apache.org/jira/browse/HIVE-7294
> Project: Hive
> Issue Type: Bug
> Components: Authorization, SQLStandardAuthorization
> Reporter: Thejas M Nair
> Assignee: Thejas M Nair
> Labels: TODOC14
> Fix For: 0.14.0
>
> Attachments: HIVE-7294.1.patch, HIVE-7294.2.patch
>
>
> A non admin user should not be allowed to run show grant commands only for
> themselves or a role they belong to.
--
This message was sent by Atlassian JIRA
(v6.2#6252)
