[
https://issues.apache.org/jira/browse/PHOENIX-5785?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Geoffrey Jacoby resolved PHOENIX-5785.
--------------------------------------
Fix Version/s: 4.16.0
Resolution: Fixed
Merged PR to 4.x. (Master isn't needed because PHOENIX-5645 isn't in master.)
> Remove TTL check in QueryCompiler when doing an SCN / Lookback query
> --------------------------------------------------------------------
>
> Key: PHOENIX-5785
> URL: https://issues.apache.org/jira/browse/PHOENIX-5785
> Project: Phoenix
> Issue Type: Bug
> Reporter: Geoffrey Jacoby
> Assignee: Geoffrey Jacoby
> Priority: Major
> Fix For: 4.16.0
>
> Time Spent: 20m
> Remaining Estimate: 0h
>
> As a sanity check, the Phoenix client verifies that SCN for a query is not
> before the TTL of any table involved in the query. This causes problems if
> access control is enabled and the current user doesn't have ADMIN or CREATE
> privileges, because HBase requires schema-altering privileges to _read_ the
> full schema in getTableDescriptor.
> According to the HBase community, this is because sensitive config parameters
> can be stored in table descriptor properties, such as those used in HBase
> encryption. See HBASE-24018, HBASE-8692, and HBASE-9182 for previous
> discussion, and PHOENIX-5750 for a previous instance where this has affected
> Phoenix.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
