----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/48055/#review136524 -----------------------------------------------------------
Thanks for the change! The more I think about it, I feel we should be double careful when making auth model change. I am trying to think what the user behavior change be with this for: 1. Alter table rename db1.tb1 to db1.tb2: We are essentially dropping db1.tb1 and creating db1.tb2. So at minimum create and drop on db1 are required. Would requiring all cause any inflexibility? 2. Alter table rename db1.tb1 to db2.tb2: At a minimum, user needs drop on db1 and create on db2. Would requiring all cause any inflexibility? And also what should our upgrade recommendation be? - Sravya Tirukkovalur On June 7, 2016, 5:44 a.m., Colin Ma wrote: > > ----------------------------------------------------------- > This is an automatically generated e-mail. To reply, visit: > https://reviews.apache.org/r/48055/ > ----------------------------------------------------------- > > (Updated June 7, 2016, 5:44 a.m.) > > > Review request for sentry and Sravya Tirukkovalur. > > > Repository: sentry > > > Description > ------- > > User Pete > has read-write access to schema A > has read-only access to schema B > > User Pete nevertheless was able to rename/move Hive table > from schema A to schema B (where he has read-only access): > > {quote} > use A; > alter table table_a rename to B.table_a; > {quote} > > Hive allows to use rename table syntax to move tables across schemas, not > just rename. > > Sentry does not check security boundaries in this case. > > > Diffs > ----- > > > sentry-binding/sentry-binding-hive-common/src/main/java/org/apache/sentry/binding/hive/HiveAuthzBindingHookBase.java > dd16960 > > sentry-binding/sentry-binding-hive/src/main/java/org/apache/sentry/binding/hive/HiveAuthzBindingHook.java > a13ab79 > > sentry-binding/sentry-binding-hive/src/main/java/org/apache/sentry/binding/hive/authz/HiveAuthzPrivilegesMap.java > 6c9f223 > > sentry-tests/sentry-tests-hive/src/test/java/org/apache/sentry/tests/e2e/dbprovider/TestDbPrivilegeCleanupOnDrop.java > 767bcbe > > sentry-tests/sentry-tests-hive/src/test/java/org/apache/sentry/tests/e2e/hive/TestOperationsPart1.java > a13aef5 > > sentry-tests/sentry-tests-hive/src/test/java/org/apache/sentry/tests/e2e/hive/TestOperationsPart2.java > 8eb2851 > > Diff: https://reviews.apache.org/r/48055/diff/ > > > Testing > ------- > > > Thanks, > > Colin Ma > >