[
https://issues.apache.org/jira/browse/HIVE-17606?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16184573#comment-16184573
]
Thejas M Nair commented on HIVE-17606:
--------------------------------------
MetaStoreUtils.hasPermissionForDbNotificationCalls is implementing a more
generic function that what the name suggests. Maybe call it something like
checkUserHasHostProxyPrivileges ?
That would help clarify the purpose and help re-use if some other code path
also needs same functionality.
> Improve security for DB notification related APIs
> -------------------------------------------------
>
> Key: HIVE-17606
> URL: https://issues.apache.org/jira/browse/HIVE-17606
> Project: Hive
> Issue Type: Improvement
> Components: Metastore
> Reporter: Tao Li
> Assignee: Tao Li
> Attachments: HIVE-17606.1.patch, HIVE-17606.2.patch,
> HIVE-17606.3.patch, HIVE-17606.4.patch, HIVE-17606.5.patch,
> HIVE-17606.6.patch, HIVE-17606.7.patch, HIVE-17606.8.patch
>
>
> The purpose is to make sure only the superusers which are specified in the
> proxyuser settings can make the db notification related API calls, since this
> is supposed to be called by superuser/admin instead of any end user.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
