[
https://issues.apache.org/jira/browse/SENTRY-2270?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Sergio Peña updated SENTRY-2270:
--------------------------------
Assignee: Sergio Peña
Status: Patch Available (was: Open)
> Illegal privileges on columns can be granted on Hive
> ----------------------------------------------------
>
> Key: SENTRY-2270
> URL: https://issues.apache.org/jira/browse/SENTRY-2270
> Project: Sentry
> Issue Type: Bug
> Components: Sentry
> Affects Versions: 2.0.0
> Reporter: Sergio Peña
> Assignee: Sergio Peña
> Priority: Major
> Attachments: SENTRY-2270.1.patch
>
>
> It is possible to grant the following privileges on columns in beeline:
> ALTER, CREATE, DROP. However, these privileges have no semantics for a column.
> For ALL, and INSERT, beeline raises an error if the user tries to grant the
> privilege to a column, e.g.:
> {noformat}
> beeline> grant all(fn) on table tbl1 to role r1;
> Error: Error while compiling statement: FAILED: SemanticException Sentry does
> not support privilege: All on Column (state=42000,code=40000)
> beeline> grant insert(fn) on table tbl1 to role r1;
> Error: Error while compiling statement: FAILED: SemanticException Sentry does
> not support privilege: Insert on Column (state=42000,code=40000)
> {noformat}
> A similar error should be created when granting CREATE, ALTER, and DROP on
> column.
>
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
