[jira] [Updated] (HIVE-6629) Discuss SET ROLE NONE
[ https://issues.apache.org/jira/browse/HIVE-6629?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Brock Noland updated HIVE-6629: --- Attachment: HIVE-6629.patch I believe this should be it. I am going to do some testing and then I will put a RB item up. > Discuss SET ROLE NONE > - > > Key: HIVE-6629 > URL: https://issues.apache.org/jira/browse/HIVE-6629 > Project: Hive > Issue Type: Task >Affects Versions: 0.13.0 >Reporter: Brock Noland >Priority: Blocker > Fix For: 0.13.0 > > Attachments: HIVE-6629.patch > > > I understand this is well after it's been implemented. However, I think we > need to discuss the counter-intuitive SET ROLE semantics before we release > 0.13. > The new Hive Authz work implements "SET ROLE NONE" similar to MySQL meaning > that "SET ROLE NONE" actually sets your role to the default. This is > extremely counter-intuitive. > * > [Oracle|http://docs.oracle.com/cd/B19306_01/server.102/b14200/statements_10004.htm] > > * > [Informix|http://pic.dhe.ibm.com/infocenter/idshelp/v117/index.jsp?topic=%2Fcom.ibm.sqls.doc%2Fids_sqs_1186.htm] > * [Vertica|https://my.vertica.com/docs/5.1.6/HTML/index.htm#15645.htm] > * > [SAP|http://www.sapdb.org/htmhelp/44/a17998442911d3a98200a0c9449261/content.htm] > All of the widely deployed databases above have "SET ROLE NONE" disable all > privileges. Those databases have the intuitive "SET ROLE ALL" or "SET ROLE > DEFAULT" enable all privileges. -- This message was sent by Atlassian JIRA (v6.2#6252)
[jira] [Updated] (HIVE-6629) Discuss SET ROLE NONE
[ https://issues.apache.org/jira/browse/HIVE-6629?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Brock Noland updated HIVE-6629: --- Description: I understand this is well after it's been implemented. However, I think we need to discuss the counter-intuitive SET ROLE semantics before we release 0.13. The new Hive Authz work implements "SET ROLE NONE" similar to MySQL meaning that "SET ROLE NONE" actually sets your role to the default. This is extremely counter-intuitive. * [Oracle|http://docs.oracle.com/cd/B19306_01/server.102/b14200/statements_10004.htm] * [Informix|http://pic.dhe.ibm.com/infocenter/idshelp/v117/index.jsp?topic=%2Fcom.ibm.sqls.doc%2Fids_sqs_1186.htm] * [Vertica|https://my.vertica.com/docs/5.1.6/HTML/index.htm#15645.htm] * [SAP|http://www.sapdb.org/htmhelp/44/a17998442911d3a98200a0c9449261/content.htm] All of the widely deployed databases above have "SET ROLE NONE" disable all privileges. Those databases have the intuitive "SET ROLE ALL" or "SET ROLE DEFAULT" enable all privileges. was: I understand this is well after it's been implemented. However, I think we need to discuss the counter-intuitive SET ROLE semantics before we release 0.13. The new Hive Authz work implements "SET ROLE NONE" similar to MySQL meaning that "SET ROLE NONE" actually sets your role to the default. This is extremely counter-intuitive. * [Oracle|http://docs.oracle.com/cd/B19306_01/server.102/b14200/statements_10004.htm] * [Informix|http://pic.dhe.ibm.com/infocenter/idshelp/v117/index.jsp?topic=%2Fcom.ibm.sqls.doc%2Fids_sqs_1186.htm] * [Vertica|https://my.vertica.com/docs/5.1.6/HTML/index.htm#15645.htm] * [SAP|http://www.sapdb.org/htmhelp/44/a17998442911d3a98200a0c9449261/content.htm] All of the widely deployed databases have "SET ROLE NONE" disable all privileges. Those databases have the intuitive "SET ROLE ALL" or "SET ROLE DEFAULT" enable all privileges. > Discuss SET ROLE NONE > - > > Key: HIVE-6629 > URL: https://issues.apache.org/jira/browse/HIVE-6629 > Project: Hive > Issue Type: Task >Affects Versions: 0.13.0 >Reporter: Brock Noland >Priority: Blocker > Fix For: 0.13.0 > > > I understand this is well after it's been implemented. However, I think we > need to discuss the counter-intuitive SET ROLE semantics before we release > 0.13. > The new Hive Authz work implements "SET ROLE NONE" similar to MySQL meaning > that "SET ROLE NONE" actually sets your role to the default. This is > extremely counter-intuitive. > * > [Oracle|http://docs.oracle.com/cd/B19306_01/server.102/b14200/statements_10004.htm] > > * > [Informix|http://pic.dhe.ibm.com/infocenter/idshelp/v117/index.jsp?topic=%2Fcom.ibm.sqls.doc%2Fids_sqs_1186.htm] > * [Vertica|https://my.vertica.com/docs/5.1.6/HTML/index.htm#15645.htm] > * > [SAP|http://www.sapdb.org/htmhelp/44/a17998442911d3a98200a0c9449261/content.htm] > All of the widely deployed databases above have "SET ROLE NONE" disable all > privileges. Those databases have the intuitive "SET ROLE ALL" or "SET ROLE > DEFAULT" enable all privileges. -- This message was sent by Atlassian JIRA (v6.2#6252)
[jira] [Updated] (HIVE-6629) Discuss SET ROLE NONE
[ https://issues.apache.org/jira/browse/HIVE-6629?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Brock Noland updated HIVE-6629: --- Description: I understand this is well after it's been implemented. However, I think we need to discuss the counter-intuitive SET ROLE semantics before we release 0.13. The new Hive Authz work implements "SET ROLE NONE" similar to MySQL meaning that "SET ROLE NONE" actually sets your role to the default. This is extremely counter-intuitive. * [Oracle|http://docs.oracle.com/cd/B19306_01/server.102/b14200/statements_10004.htm] * [Informix|http://pic.dhe.ibm.com/infocenter/idshelp/v117/index.jsp?topic=%2Fcom.ibm.sqls.doc%2Fids_sqs_1186.htm] * [Vertica|https://my.vertica.com/docs/5.1.6/HTML/index.htm#15645.htm] * [SAP|http://www.sapdb.org/htmhelp/44/a17998442911d3a98200a0c9449261/content.htm] All of the widely deployed databases have "SET ROLE NONE" disable all privileges. Those databases have the intuitive "SET ROLE ALL" or "SET ROLE DEFAULT" enable all privileges. was: I understand this is well after it's been implemented. However, I think we need to discuss the counter-intuitive SET ROLE syntax before we release 0.13. The new Hive Authz work implements "SET ROLE NONE" similar to MySQL meaning that "SET ROLE NONE" actually sets your role to the default. This is extremely counter-intuitive. * [Oracle|http://docs.oracle.com/cd/B19306_01/server.102/b14200/statements_10004.htm] * [Informix|http://pic.dhe.ibm.com/infocenter/idshelp/v117/index.jsp?topic=%2Fcom.ibm.sqls.doc%2Fids_sqs_1186.htm] * [Vertica|https://my.vertica.com/docs/5.1.6/HTML/index.htm#15645.htm] * [SAP|http://www.sapdb.org/htmhelp/44/a17998442911d3a98200a0c9449261/content.htm] All of the widely deployed databases have "SET ROLE NONE" disable all privileges. Those databases have the intuitive "SET ROLE ALL" or "SET ROLE DEFAULT" enable all privileges. > Discuss SET ROLE NONE > - > > Key: HIVE-6629 > URL: https://issues.apache.org/jira/browse/HIVE-6629 > Project: Hive > Issue Type: Task >Affects Versions: 0.13.0 >Reporter: Brock Noland >Priority: Blocker > Fix For: 0.13.0 > > > I understand this is well after it's been implemented. However, I think we > need to discuss the counter-intuitive SET ROLE semantics before we release > 0.13. > The new Hive Authz work implements "SET ROLE NONE" similar to MySQL meaning > that "SET ROLE NONE" actually sets your role to the default. This is > extremely counter-intuitive. > * > [Oracle|http://docs.oracle.com/cd/B19306_01/server.102/b14200/statements_10004.htm] > > * > [Informix|http://pic.dhe.ibm.com/infocenter/idshelp/v117/index.jsp?topic=%2Fcom.ibm.sqls.doc%2Fids_sqs_1186.htm] > * [Vertica|https://my.vertica.com/docs/5.1.6/HTML/index.htm#15645.htm] > * > [SAP|http://www.sapdb.org/htmhelp/44/a17998442911d3a98200a0c9449261/content.htm] > All of the widely deployed databases have "SET ROLE NONE" disable all > privileges. Those databases have the intuitive "SET ROLE ALL" or "SET ROLE > DEFAULT" enable all privileges. -- This message was sent by Atlassian JIRA (v6.2#6252)