private static RequiredPrivileges getGrantRequiredPrivileges(List<HivePrivilege> hivePrivileges) throws HiveAuthzPluginException { RequiredPrivileges reqPrivs = new RequiredPrivileges(); for (HivePrivilege hivePriv : hivePrivileges) { reqPrivs.addPrivilege(hivePriv.getName(), true /* grant priv required */); } return reqPrivs; }
private List<HivePrivilege> expandAllPrivileges(List<HivePrivilege> hivePrivileges) { Set<HivePrivilege> hivePrivSet = new HashSet<HivePrivilege>(); for (HivePrivilege hivePrivilege : hivePrivileges) { if (hivePrivilege.getName().equals(ALL)) { // expand to all supported privileges for (SQLPrivilegeType privType : SQLPrivilegeType.values()) { hivePrivSet.add(new HivePrivilege(privType.name(), hivePrivilege.getColumns())); } } else { hivePrivSet.add(hivePrivilege); } } return new ArrayList<HivePrivilege>(hivePrivSet); }
private static RequiredPrivileges getGrantRequiredPrivileges(List<HivePrivilege> hivePrivileges) throws HiveAuthzPluginException { RequiredPrivileges reqPrivs = new RequiredPrivileges(); for (HivePrivilege hivePriv : hivePrivileges) { reqPrivs.addPrivilege(hivePriv.getName(), true /* grant priv required */); } return reqPrivs; }
private List<HivePrivilege> expandAllPrivileges(List<HivePrivilege> hivePrivileges) { Set<HivePrivilege> hivePrivSet = new HashSet<HivePrivilege>(); for (HivePrivilege hivePrivilege : hivePrivileges) { if (hivePrivilege.getName().equals(ALL)) { // expand to all supported privileges for (SQLPrivilegeType privType : SQLPrivilegeType.values()) { hivePrivSet.add(new HivePrivilege(privType.name(), hivePrivilege.getColumns())); } } else { hivePrivSet.add(hivePrivilege); } } return new ArrayList<HivePrivilege>(hivePrivSet); }
/** * Check if the privileges are acceptable for SQL Standard authorization implementation * @param hivePrivileges * @throws HiveAuthzPluginException */ public static void validatePrivileges(List<HivePrivilege> hivePrivileges) throws HiveAuthzPluginException { for (HivePrivilege hivePrivilege : hivePrivileges) { if (hivePrivilege.getColumns() != null && hivePrivilege.getColumns().size() != 0) { throw new HiveAuthzPluginException( "Privilege with columns are not currently supported with sql standard authorization:" + hivePrivilege); } //try converting to the enum to verify that this is a valid privilege type SQLPrivilegeType.getRequirePrivilege(hivePrivilege.getName()); } }
/** * Check if the privileges are acceptable for SQL Standard authorization implementation * @param hivePrivileges * @throws HiveAuthzPluginException */ public static void validatePrivileges(List<HivePrivilege> hivePrivileges) throws HiveAuthzPluginException { for (HivePrivilege hivePrivilege : hivePrivileges) { if (hivePrivilege.getColumns() != null && hivePrivilege.getColumns().size() != 0) { throw new HiveAuthzPluginException( "Privilege with columns are not currently supported with sql standard authorization:" + hivePrivilege); } //try converting to the enum to verify that this is a valid privilege type SQLPrivilegeType.getRequirePrivilege(hivePrivilege.getName()); } }
/** * Get thrift privilege grant info * @param privilege * @param grantorPrincipal * @param grantOption * @param grantTime * @return * @throws HiveException */ public static PrivilegeGrantInfo getThriftPrivilegeGrantInfo(HivePrivilege privilege, HivePrincipal grantorPrincipal, boolean grantOption, int grantTime) throws HiveException { return new PrivilegeGrantInfo(privilege.getName(), grantTime, grantorPrincipal.getName(), getThriftPrincipalType(grantorPrincipal.getType()), grantOption); }
HiveObjectPrivilege matchedPriv = priv2privObj.get(hivePrivilege.getName()); if (matchedPriv != null) { matchingPrivs.add(matchedPriv);
HiveObjectPrivilege matchedPriv = priv2privObj.get(hivePrivilege.getName()); if (matchedPriv != null) { matchingPrivs.add(matchedPriv);
/** * Get thrift privilege grant info * @param privilege * @param grantorPrincipal * @param grantOption * @param grantTime * @return * @throws HiveException */ public static PrivilegeGrantInfo getThriftPrivilegeGrantInfo(HivePrivilege privilege, HivePrincipal grantorPrincipal, boolean grantOption, int grantTime) throws HiveException { return new PrivilegeGrantInfo(privilege.getName(), grantTime, grantorPrincipal.getName(), getThriftPrincipalType(grantorPrincipal.getType()), grantOption); }
appendNonNull(builder, principal.getName()); appendNonNull(builder, principal.getType()); appendNonNull(builder, privilege.getPrivilege().getName()); appendNonNull(builder, privilege.isGrantOption()); appendNonNull(builder, testMode ? -1 : privilege.getGrantTime() * 1000L);
appendNonNull(builder, principal.getName()); appendNonNull(builder, principal.getType()); appendNonNull(builder, privilege.getPrivilege().getName()); appendNonNull(builder, privilege.isGrantOption()); appendNonNull(builder, testMode ? -1 : privilege.getGrantTime() * 1000L);
new PrivilegeGrantInfo(priv.getName(), 0, grantor.getName(), grantorType, grantOption), authorizer)); if (columns != null && !columns.isEmpty()) { if (!priv.supportsScope(PrivilegeScope.COLUMN_LEVEL_SCOPE)) { throw new HiveException(priv.getName() + " does not support column level privilege."); new HiveObjectRef(HiveObjectType.COLUMN, dbObj.getName(), tableObj.getTableName(), partValues, columns.get(i)), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption), authorizer)); new HiveObjectRef(HiveObjectType.DATABASE, dbObj.getName(), null, null, null), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption), authorizer)); } else if (partValues == null) { privBag.addToPrivileges(new HiveObjectPrivilege( new HiveObjectRef(HiveObjectType.TABLE, dbObj.getName(), tableObj.getTableName(), null, null), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption), authorizer)); } else { privBag.addToPrivileges(new HiveObjectPrivilege( new HiveObjectRef(HiveObjectType.PARTITION, dbObj.getName(), tableObj.getTableName(), partValues, null), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption), authorizer));
new PrivilegeGrantInfo(priv.getName(), 0, grantor.getName(), grantorType, grantOption))); if (columns != null && !columns.isEmpty()) { if (!priv.supportsScope(PrivilegeScope.COLUMN_LEVEL_SCOPE)) { throw new HiveException(priv.getName() + " does not support column level privilege."); new HiveObjectRef(HiveObjectType.COLUMN, dbObj.getName(), tableObj.getTableName(), partValues, columns.get(i)), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption))); new HiveObjectRef(HiveObjectType.DATABASE, dbObj.getName(), null, null, null), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption))); } else if (partValues == null) { privBag.addToPrivileges(new HiveObjectPrivilege( new HiveObjectRef(HiveObjectType.TABLE, dbObj.getName(), tableObj.getTableName(), null, null), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption))); } else { privBag.addToPrivileges(new HiveObjectPrivilege( new HiveObjectRef(HiveObjectType.PARTITION, dbObj.getName(), tableObj.getTableName(), partValues, null), null, null, new PrivilegeGrantInfo(priv.getName(), 0, grantorName, grantorType, grantOption)));
private static RequiredPrivileges getGrantRequiredPrivileges(List<HivePrivilege> hivePrivileges) throws HiveAuthzPluginException { RequiredPrivileges reqPrivs = new RequiredPrivileges(); for (HivePrivilege hivePriv : hivePrivileges) { reqPrivs.addPrivilege(hivePriv.getName(), true /* grant priv required */); } return reqPrivs; }
private List<HivePrivilege> expandAllPrivileges(List<HivePrivilege> hivePrivileges) { Set<HivePrivilege> hivePrivSet = new HashSet<HivePrivilege>(); for (HivePrivilege hivePrivilege : hivePrivileges) { if (hivePrivilege.getName().equals(ALL)) { // expand to all supported privileges for (SQLPrivilegeType privType : SQLPrivilegeType.values()) { hivePrivSet.add(new HivePrivilege(privType.name(), hivePrivilege.getColumns())); } } else { hivePrivSet.add(hivePrivilege); } } return new ArrayList<HivePrivilege>(hivePrivSet); }
/** * Check if the privileges are acceptable for SQL Standard authorization implementation * @param hivePrivileges * @throws HiveAuthzPluginException */ public static void validatePrivileges(List<HivePrivilege> hivePrivileges) throws HiveAuthzPluginException { for (HivePrivilege hivePrivilege : hivePrivileges) { if (hivePrivilege.getColumns() != null && hivePrivilege.getColumns().size() != 0) { throw new HiveAuthzPluginException( "Privilege with columns are not currently supported with sql standard authorization:" + hivePrivilege); } //try converting to the enum to verify that this is a valid privilege type SQLPrivilegeType.getRequirePrivilege(hivePrivilege.getName()); } }
/** * Get thrift privilege grant info * @param privilege * @param grantorPrincipal * @param grantOption * @param grantTime * @return * @throws HiveException */ public static PrivilegeGrantInfo getThriftPrivilegeGrantInfo(HivePrivilege privilege, HivePrincipal grantorPrincipal, boolean grantOption, int grantTime) throws HiveException { return new PrivilegeGrantInfo(privilege.getName(), grantTime, grantorPrincipal.getName(), getThriftPrincipalType(grantorPrincipal.getType()), grantOption); }