Sergio Peña created SENTRY-2270:
-----------------------------------
Summary: Illegal privileges on columns can be granted on Hive
Key: SENTRY-2270
URL: https://issues.apache.org/jira/browse/SENTRY-2270
Project: Sentry
Issue Type: Bug
Components: Sentry
Affects Versions: 2.0.0
Reporter: Sergio Peña
It is possible to grant the following privileges on columns in beeline: ALTER,
CREATE, DROP. However, these privileges have no semantics for a column.
For ALL, and INSERT, beeline raises an error if the user tries to grant the
privilege to a column, e.g.:
{noformat}
beeline> grant all(fn) on table tbl1 to role r1;
Error: Error while compiling statement: FAILED: SemanticException Sentry does
not support privilege: All on Column (state=42000,code=40000)
beeline> grant insert(fn) on table tbl1 to role r1;
Error: Error while compiling statement: FAILED: SemanticException Sentry does
not support privilege: Insert on Column (state=42000,code=40000)
{noformat}
A similar error should be created when granting CREATE, ALTER, and DROP on
column.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
