hive-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Thejas M Nair (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (HIVE-12324) when try to make the path specified in the create DDL's location,it report HiveAccessControlException Permission denied
Date Mon, 16 Oct 2017 19:13:00 GMT

    [ https://issues.apache.org/jira/browse/HIVE-12324?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16206423#comment-16206423
] 

Thejas M Nair commented on HIVE-12324:
--------------------------------------

Fixed by HIVE-10022

> when try to make the path specified in the create DDL's location,it report HiveAccessControlException
Permission denied
> -----------------------------------------------------------------------------------------------------------------------
>
>                 Key: HIVE-12324
>                 URL: https://issues.apache.org/jira/browse/HIVE-12324
>             Project: Hive
>          Issue Type: Improvement
>          Components: Authorization
>    Affects Versions: 0.13.1, 1.1.0
>            Reporter: forrest lv
>            Assignee: forrest lv
>            Priority: Minor
>
> If the specific location does not exist while creating table,It'll try to make a directory
which matches the location.  In the process ,if the location's upper paths also don't exist,It'll
find a path "PRTPATH" which is the  specific location's forward path,and then create the missing
paths under the PRTPATH.  But It'll check all files' privilege  under the PRTPATH,so even
though current user has privilege on the PRTPATH,it'll fail on privilege check
> [root@xxx opt]# hdfs dfs -ls /tmp
> drwxr-xr-x   - user1  hadoop          0 2015-11-03 19:14 /tmp/user1
> [root@xxx opt]# hdfs dfs -ls /tmp/user1
> Found 2 items
> drwxr-xr-x   - admin hadoop          0 2015-11-03 19:14 /tmp/user1/admin_t2
> drwxr-xr-x   - user1 hadoop          0 2015-11-03 19:13 /tmp/user1/user1_t1
> 0: jdbc:hive2://167.52.0.81:21066/> create external table user1_t3(id int, name string)
row format delimited fields terminated by ',' stored as textfile location '/tmp/user1/user1_t3';
> Error: Error while compiling statement: FAILED: HiveAccessControlException Permission
denied: Principal [name=user1, type=USER] does not have following privileges for operation
CREATETABLE [[INSERT, DELETE, OBJECT OWNERSHIP] on Object [type=DFS_URI, name=hdfs://hacluster/tmp/user1/user1_t3]]
(state=42000,code=40000) 



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

Mime
View raw message