kyuubi
kyuubi copied to clipboard
apache
[Bug][Authz] Paimon doesn't support delete/update operatons
Code of Conduct
- [X] I agree to follow this project's Code of Conduct
Search before asking
- [X] I have searched in the issues and found no similar issues.
Describe the bug
The user only has the read privilege in the Ranger service but can execute the SQL update and delete.
kyuubi-spark-authz-shaded_2.12:1.10.0
Affects Version(s)
master/1.10.0
Kyuubi Server Log Output
There is no AccessControlException to throw.
Kyuubi Engine Log Output
There is no AccessControlException to throw.
Kyuubi Server Configurations
There is no AccessControlException to throw.
Kyuubi Engine Configurations
There is no AccessControlException to throw.
Additional context
No response
Are you willing to submit PR?
- [ ] Yes. I would be willing to submit a PR with guidance from the Kyuubi community to fix.
- [X] No. I cannot submit a PR at this time.
Hello @jerqi, Thanks for finding the time to report the issue! We really appreciate the community's efforts to improve Apache Kyuubi.
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "Published by a pub.dev verified publisher"){kind=small}
Authorization for Paimon is not fully support yet, I believe their some Paimon specific LogicalPlans that we need to visit
hello, this problem has fixed in https://github.com/apache/kyuubi/pull/6974, i think you could use the master branch when #5470 issue subtask all done
