sentry-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Prasad Mujumdar (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SENTRY-156) Support local privilege validation APIs
Date Fri, 16 May 2014 16:22:53 GMT

    [ https://issues.apache.org/jira/browse/SENTRY-156?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13999947#comment-13999947
] 

Prasad Mujumdar commented on SENTRY-156:
----------------------------------------

[~sravya] I haven't update the patch. Here are the comments from RB

bq. I dont see this conf and resourcePath being used anywhere, might as well get rid of it?
In which case we can also get rid of hadoop-common dependency.
Actually the constructor for providerBackend needs to have that the configuration argument.
The authorization provider looks for that specific method signature using reflection. 
Also if we can remove hadoop-common dependency in cache provider, the other layers still need
configuration object. Hence we can't remove it from Hive or Impala altogether.

> Support local privilege validation APIs
> ---------------------------------------
>
>                 Key: SENTRY-156
>                 URL: https://issues.apache.org/jira/browse/SENTRY-156
>             Project: Sentry
>          Issue Type: Sub-task
>            Reporter: Prasad Mujumdar
>            Assignee: Prasad Mujumdar
>         Attachments: SENTRY-156.1.patch, sentry-cache-provider.patch
>
>
> The authorization provider reads the retrieves the privileges from the underlying policy
provider (either file or DB store). We should support additional APIs where the privileges
are passed by the caller. This is useful for Impala when working on a cached copy of privileges.
It will also be handy for DB store client unit tests.



--
This message was sent by Atlassian JIRA
(v6.2#6252)

Mime
View raw message