[
https://issues.apache.org/jira/browse/HIVE-11826?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14852721#comment-14852721
]
Aihua Xu commented on HIVE-11826:
---------------------------------
I will still keep the deprecated version for now since seems we have
dependency issue in pom.xml which still includes old version of hadoop-core in
the classpath which will fail the build. I was looking into that since we also
have problems in other place but I'm not familiar with dependency yet.
> 'hadoop.proxyuser.hive.groups' configuration doesn't prevent unauthorized
> user to access metastore
> --------------------------------------------------------------------------------------------------
>
> Key: HIVE-11826
> URL: https://issues.apache.org/jira/browse/HIVE-11826
> Project: Hive
> Issue Type: Bug
> Components: Metastore
> Affects Versions: 2.0.0
> Reporter: Aihua Xu
> Assignee: Aihua Xu
> Attachments: HIVE-11826.2.patch, HIVE-11826.patch
>
>
> With 'hadoop.proxyuser.hive.groups' configured in core-site.xml to certain
> groups, currently if you run the job with a user not belonging to those
> groups, it won't fail to access metastore. With old version hive 0.13,
> actually it fails properly.
> Seems HadoopThriftAuthBridge20S.java correctly call ProxyUsers.authorize()
> while HadoopThriftAuthBridge23 doesn't.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
