@Override public void authorize(Privilege[] inputRequiredPriv, Privilege[] outputRequiredPriv) throws HiveException, AuthorizationException { BitSetChecker checker = BitSetChecker.getBitSetChecker(inputRequiredPriv, outputRequiredPriv); boolean[] inputCheck = checker.inputCheck; boolean[] outputCheck = checker.outputCheck; authorizeUserPriv(inputRequiredPriv, inputCheck, outputRequiredPriv, outputCheck); checkAndThrowAuthorizationException(inputRequiredPriv, outputRequiredPriv, inputCheck, outputCheck, null, null, null, null); }
public static Privilege getPrivilege(String privilegeName) { PrivilegeType ptype = PrivilegeType.getPrivTypeByName(privilegeName); return getPrivilegeFromRegistry(ptype); }
private void authorizeAuthorizationAPICall() throws InvalidOperationException, MetaException { for (HiveMetastoreAuthorizationProvider authorizer : tAuthorizers.get()) { try { authorizer.authorizeAuthorizationApiInvocation(); } catch (AuthorizationException e) { throw invalidOperationException(e); } catch (HiveException e) { throw metaException(e); } } }
@Override public void authorize(Database db, Privilege[] inputRequiredPriv, Privilege[] outputRequiredPriv) throws HiveException, AuthorizationException { BitSetChecker checker = BitSetChecker.getBitSetChecker(inputRequiredPriv, outputRequiredPriv); boolean[] inputCheck = checker.inputCheck; boolean[] outputCheck = checker.outputCheck; authorizeUserAndDBPriv(db, inputRequiredPriv, outputRequiredPriv, inputCheck, outputCheck); checkAndThrowAuthorizationException(inputRequiredPriv, outputRequiredPriv, inputCheck, outputCheck, db.getName(), null, null, null); }
protected boolean authorizeUserPriv(Privilege[] inputRequiredPriv, boolean[] inputCheck, Privilege[] outputRequiredPriv, boolean[] outputCheck) throws HiveException { PrincipalPrivilegeSet privileges = hive_db.get_privilege_set( HiveObjectType.GLOBAL, null, null, null, null, this.getAuthenticator() .getUserName(), this.getAuthenticator().getGroupNames()); return authorizePrivileges(privileges, inputRequiredPriv, inputCheck, outputRequiredPriv, outputCheck); }
@Override public HiveAuthorizationProvider getAuthorizationProvider() throws HiveException { return new DefaultHiveAuthorizationProvider(); }
public static Privilege getPrivilege(int privilegeToken) { PrivilegeType ptype = PrivilegeType.getPrivTypeByToken(privilegeToken); return getPrivilegeFromRegistry(ptype); }
@Override public HivePolicyProvider getHivePolicyProvider() throws HiveAuthzPluginException { return new HDFSPermissionPolicyProvider(getConf()); }
@Override public void init(Configuration conf) throws HiveException { hive_db = new HiveProxy(); }
@Override public void authorize(Table table, Partition part, List<String> columns, Privilege[] readRequiredPriv, Privilege[] writeRequiredPriv) throws HiveException, AuthorizationException { // In a simple storage-based auth, we have no information about columns // living in different files, so we do simple partition-auth and ignore // the columns parameter. authorize(table, part, readRequiredPriv, writeRequiredPriv); }
protected boolean authorizePrivileges(PrincipalPrivilegeSet privileges, Privilege[] inputPriv, boolean[] inputCheck, Privilege[] outputPriv, boolean[] outputCheck) throws HiveException { boolean pass = true; if (inputPriv != null) { pass = pass && matchPrivs(inputPriv, privileges, inputCheck); } if (outputPriv != null) { pass = pass && matchPrivs(outputPriv, privileges, outputCheck); } return pass; }
public PartitionWrapper(org.apache.hadoop.hive.ql.metadata.Table table, org.apache.hadoop.hive.metastore.api.Partition mapiPart) throws HiveException { initialize(table,mapiPart); }
@Override public void setMetaStoreHandler(IHMSHandler handler) { hive_db.setHandler(handler); }
public Object invoke(Object proxy, Method method, Object[] args) throws Throwable { invokeAuth(method, args); return null; }
@Override public Iterator<HivePolicyProvider> iterator() { return new PolicyIterator(); }
@Override public void authorize(Privilege[] inputRequiredPriv, Privilege[] outputRequiredPriv) throws HiveException, AuthorizationException { BitSetChecker checker = BitSetChecker.getBitSetChecker(inputRequiredPriv, outputRequiredPriv); boolean[] inputCheck = checker.inputCheck; boolean[] outputCheck = checker.outputCheck; authorizeUserPriv(inputRequiredPriv, inputCheck, outputRequiredPriv, outputCheck); checkAndThrowAuthorizationException(inputRequiredPriv, outputRequiredPriv, inputCheck, outputCheck, null, null, null, null); }
public HiveAuthorizationProvider getAuthorizationProvider() throws HiveException { return new DefaultHiveAuthorizationProvider(); }
public static Privilege getPrivilege(String privilegeName) { PrivilegeType ptype = PrivilegeType.getPrivTypeByName(privilegeName); return getPrivilegeFromRegistry(ptype); }
@Override public void init(Configuration conf) throws HiveException { hive_db = new HiveProxy(); }