...
Authentication/Authorization
Hive Client Security
hive.security.authorization.enabled
...
The privileges automatically granted to the owner whenever a table gets created. An example like "select,drop" will grant select and drop privilege to the owner of the table.
Hive Metastore Security
hive.security.metastore.authorization.manager
- Default Value:
org.apache.hadoop.hive.ql.security.authorization.DefaultHiveMetastoreAuthorizationProvider
- Added In: Hive 0.10.0
The authorization manager class name to be used in the metastore for authorization. The user-defined authorization class should implement interface org.apache.hadoop.hive.ql.security.authorization.HiveMetastoreAuthorizationProvider
.
A storage-based authorization implementation is provided to use as the value of this parameter:
org.apache.hadoop.hive.ql.security.authorization.StorageBasedAuthorizationProvider
which uses HDFS permissions to provide authorization instead of using Hive-style grant-based authorization.
hive.security.metastore.authenticator.manager
- Default Value:
org.apache.hadoop.hive.ql.security.HadoopDefaultMetastoreAuthenticator
- Added In: Hive 0.10.0
The authenticator manager class name to be used in the metastore for authentication. The user-defined authenticator class should implement interface org.apache.hadoop.hive.ql.security.HiveAuthenticationProvider
.
hive.metastore.pre.event.listeners
- Default Value: (empty)
- Added In:
The pre-event listener classes to be loaded on the metastore side to run code whenever databases, tables, and partitions are created, altered, or dropped. Set this parameter to org.apache.hadoop.hive.ql.security.authorization.AuthorizationPreEventListener
in hive-site.xml for Hive metastore security.
Archiving
fs.har.impl
- Default Value:
org.apache.hadoop.hive.shims.HiveHarFileSystem
- Added In:
...