[jira] [Resolved] (PHOENIX-3985) Phoenix SQuirrel log in allows non-existing users/wrong passwords and can query

Josh Elser (JIRA) Fri, 30 Jun 2017 08:37:27 -0700

     [ 
https://issues.apache.org/jira/browse/PHOENIX-3985?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Josh Elser resolved PHOENIX-3985.
---------------------------------
    Resolution: Invalid

Apache Phoenix does not presently provide username-password based 
authentication.

> Phoenix SQuirrel log in allows non-existing users/wrong passwords and can 
> query
> -------------------------------------------------------------------------------
>
>                 Key: PHOENIX-3985
>                 URL: https://issues.apache.org/jira/browse/PHOENIX-3985
>             Project: Phoenix
>          Issue Type: Bug
>         Environment: Operating System = Ubuntu 14.04.5
> Software platform = Hortonworks Hadoop Platform
>            Reporter: Maica Bisaya
>            Priority: Critical
>
> Any user (existing or non existing), also user with wrong password can log in 
> and run an sql query via Phoenix Squirrel. Meaning there's no access 
> limitation. Please check on this for version 3.7



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

[jira] [Resolved] (PHOENIX-3985) Phoenix SQuirrel log in allows non-existing users/wrong passwords and can query

Reply via email to