[jira] [Updated] (HIVE-21320) get_fields() and get_tables_by_type() are not protected by HMS server access control

Vihang Karajgaonkar (JIRA) Wed, 27 Feb 2019 10:49:16 -0800


     [ 
https://issues.apache.org/jira/browse/HIVE-21320?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Vihang Karajgaonkar updated HIVE-21320:
---------------------------------------
       Resolution: Fixed
    Fix Version/s: 4.0.0
           Status: Resolved  (was: Patch Available)

Patch merged into master. Thanks for your contribution [~LinaAtAustin]

> get_fields() and get_tables_by_type() are not protected by HMS server access 
> control
> ------------------------------------------------------------------------------------
>
>                 Key: HIVE-21320
>                 URL: https://issues.apache.org/jira/browse/HIVE-21320
>             Project: Hive
>          Issue Type: Bug
>    Affects Versions: 4.0.0
>            Reporter: Na Li
>            Assignee: Na Li
>            Priority: Major
>             Fix For: 4.0.0
>
>         Attachments: HIVE-21320.001.patch, HIVE-21320.005.patch, 
> HIVE-21320.005.patch, HIVE-21320.006.patch, HIVE-21320.007.patch, 
> HIVE-21320.008.patch, HIVE-21320.008.patch, HIVE-21320.009.patch, 
> HIVE-21320.010.patch
>
>
> User without any privilege can call these functions and get all meta data 
> back as if user has full access privilege.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Updated] (HIVE-21320) get_fields() and get_tables_by_type() are not protected by HMS server access control

Reply via email to