[ https://issues.apache.org/jira/browse/RANGER-3298?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17353037#comment-17353037 ]
Janus Chow commented on RANGER-3298: ------------------------------------ PR: https://github.com/apache/ranger/pull/101 > Add coarse URI check for Hive Agent > ----------------------------------- > > Key: RANGER-3298 > URL: https://issues.apache.org/jira/browse/RANGER-3298 > Project: Ranger > Issue Type: Improvement > Components: plugins > Reporter: Janus Chow > Priority: Major > Time Spent: 10m > Remaining Estimate: 0h > > In `RangerHiveAuthorizer`, the function of `checkPrivileges` will check the > permission for the `HivePrivilegeObject` with > `FileUtils.isActionPermittedForFileHierarchy`, and this method will check the > permission for all the files under the related directory by default. > For a large table with thousands of files, this operation will take a long > time, leading to breaking the SLA. Besides, in the default implementation of > `StorageBasedAuthorizationProvider` in Hive, only the directories will be > checked too. > This ticket is to add a config for users to do a coarse check for URI > permission check. -- This message was sent by Atlassian Jira (v8.3.4#803005)