[jira] [Commented] (HIVE-21320) get_fields() and get_tables_by_type() are not protected by HMS server access control

Hive QA (JIRA) Mon, 25 Feb 2019 14:13:19 -0800


    [ 
https://issues.apache.org/jira/browse/HIVE-21320?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16777331#comment-16777331
 ]


Hive QA commented on HIVE-21320:
--------------------------------

| (x) *{color:red}-1 overall{color}* |
\\
\\
|| Vote || Subsystem || Runtime || Comment ||
| {color:red}-1{color} | {color:red} patch {color} | {color:red}  0m  7s{color} 
| {color:red} 
/data/hiveptest/logs/PreCommit-HIVE-Build-16240/patches/PreCommit-HIVE-Build-16240.patch
 does not apply to master. Rebase required? Wrong Branch? See 
http://cwiki.apache.org/confluence/display/Hive/HowToContribute for help. 
{color} |
\\
\\
|| Subsystem || Report/Notes ||
| Console output | 
http://104.198.109.242/logs//PreCommit-HIVE-Build-16240/yetus.txt |
| Powered by | Apache Yetus    http://yetus.apache.org |


This message was automatically generated.



> get_fields() and get_tables_by_type() are not protected by HMS server access 
> control
> ------------------------------------------------------------------------------------
>
>                 Key: HIVE-21320
>                 URL: https://issues.apache.org/jira/browse/HIVE-21320
>             Project: Hive
>          Issue Type: Bug
>    Affects Versions: 4.0.0
>            Reporter: Na Li
>            Assignee: Na Li
>            Priority: Major
>         Attachments: HIVE-21320.001.patch, HIVE-21320.005.patch
>
>
> User without any privilege can call these functions and get all meta data 
> back as if user has full access privilege.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Commented] (HIVE-21320) get_fields() and get_tables_by_type() are not protected by HMS server access control

Reply via email to