Anuja Leekha created RANGER-2045:
------------------------------------
Summary: Hive column filter flag functionality has regression bug
for 'xasecure.hive.describetable.showcolumns.authorization.option' set to 'none'
Key: RANGER-2045
URL: https://issues.apache.org/jira/browse/RANGER-2045
Project: Ranger
Issue Type: Bug
Components: Ranger
Reporter: Anuja Leekha
*Test scenario*
'xasecure.hive.describetable.showcolumns.authorization.option' set to 'none'
Database 'testdb' has a table 'testtable1' with 3 columns 'name', 'age', 'city'.
Hive Policy exists giving user 'hrt_1' 'select' privilege on DB='testdb',
table='testtable1' and columns='name', 'age' [user does not have permissions on
'city' column].
"DESCRIBE testdb.testtable1" and "show columns in testdb.testtable1" commands
show results with 'city' column included.
When 'xasecure.hive.describetable.showcolumns.authorization.option' is set to
'none', Hive would follow default behavior and should deny DESCRIBE table and
show column commands as the policy does not grant the test user access to all
columns of the table. But the commands go through fine.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
