[ https://issues.apache.org/jira/browse/HIVE-17606?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16184573#comment-16184573 ]
Thejas M Nair commented on HIVE-17606: -------------------------------------- MetaStoreUtils.hasPermissionForDbNotificationCalls is implementing a more generic function that what the name suggests. Maybe call it something like checkUserHasHostProxyPrivileges ? That would help clarify the purpose and help re-use if some other code path also needs same functionality. > Improve security for DB notification related APIs > ------------------------------------------------- > > Key: HIVE-17606 > URL: https://issues.apache.org/jira/browse/HIVE-17606 > Project: Hive > Issue Type: Improvement > Components: Metastore > Reporter: Tao Li > Assignee: Tao Li > Attachments: HIVE-17606.1.patch, HIVE-17606.2.patch, > HIVE-17606.3.patch, HIVE-17606.4.patch, HIVE-17606.5.patch, > HIVE-17606.6.patch, HIVE-17606.7.patch, HIVE-17606.8.patch > > > The purpose is to make sure only the superusers which are specified in the > proxyuser settings can make the db notification related API calls, since this > is supposed to be called by superuser/admin instead of any end user. -- This message was sent by Atlassian JIRA (v6.4.14#64029)