sentry-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Sravya Tirukkovalur (JIRA)" <>
Subject [jira] [Issue Comment Deleted] (SENTRY-74) Add column-level privileges for Hive/Impala
Date Mon, 25 Aug 2014 18:51:00 GMT


Sravya Tirukkovalur updated SENTRY-74:

    Comment: was deleted

(was: [~dapengsun], I see compiler errors with this patch. Looks like getAccessedColumns is
not available in ReadEntity of the hive version we use (cdh hive based on 0.13.1).)

> Add column-level privileges for Hive/Impala
> -------------------------------------------
>                 Key: SENTRY-74
>                 URL:
>             Project: Sentry
>          Issue Type: Improvement
>    Affects Versions: 1.3.0
>            Reporter: Jeremy Beard
>            Assignee: Dapeng Sun
>             Fix For: 1.5.0
>         Attachments: Design Document of Column-Level Access Control_v1.pdf, SENTRY-74.patch
> Currently the finest grain of privilege is at the table/view level. This leads to the
unwieldy scenario where a different view has to be created for each combination of columns
that need to be restricted. With column level privileges this would not be required.
> In the policy file column privileges might potentially look like:
> server=server1->db=default->table=employees->column=salary->action=select

This message was sent by Atlassian JIRA

View raw message