Uploaded image for project: 'HBase'
  1. HBase
  2. HBASE-23896

Snapshot owner cannot delete snapshot when ACL is enabled and Kerberos is not enabled

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 3.0.0-alpha-1, 2.2.3
    • 3.0.0-alpha-1, 2.3.0, 2.2.5
    • None
    • None

    Description

      When ACL is enabled and Kerberos is not enabled, the snapshot owner cannot delete the snapshot. This is because the owner of the snapshot cannot be taken during permission verification. By investigation, found that only after HBase has enabled security authentication, the owner will be set when doing snapshot.

      SnapshotManager#takeSnapshotInternal

      SnapshotManager.java
      RpcServer.getRequestUser().ifPresent(user -> {
  if (User.isHBaseSecurityEnabled(master.getConfiguration())) {
    builder.setOwner(user.getShortName());
  }
});

       

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. HBASE-24184 Backport HBASE-23896 to branch-1: Snapshot owner cannot delete snapshot when ACL is enabled and Kerberos is not enabled

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          links to

          Web Link GitHub Pull Request #1211

          Web Link GitHub Pull Request #1510

          Activity

            People

              gxcheng Guangxu Cheng
              gxcheng Guangxu Cheng
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: