Example 6 with InvalidObjectException
use of org.apache.hadoop.hive.metastore.api.InvalidObjectException in project hive by apache.
the class ObjectStore method revokePrivileges.
@Override
public boolean revokePrivileges(PrivilegeBag privileges, boolean grantOption) throws InvalidObjectException, MetaException, NoSuchObjectException {
boolean committed = false;
try {
openTransaction();
List<Object> persistentObjs = new ArrayList<Object>();
List<HiveObjectPrivilege> privilegeList = privileges.getPrivileges();
if (privilegeList != null && privilegeList.size() > 0) {
Iterator<HiveObjectPrivilege> privIter = privilegeList.iterator();
while (privIter.hasNext()) {
HiveObjectPrivilege privDef = privIter.next();
HiveObjectRef hiveObject = privDef.getHiveObject();
String privilegeStr = privDef.getGrantInfo().getPrivilege();
if (privilegeStr == null || privilegeStr.trim().equals("")) {
continue;
}
String[] privs = privilegeStr.split(",");
String userName = privDef.getPrincipalName();
PrincipalType principalType = privDef.getPrincipalType();
if (hiveObject.getObjectType() == HiveObjectType.GLOBAL) {
List<MGlobalPrivilege> mSecUser = this.listPrincipalMGlobalGrants(userName, principalType);
boolean found = false;
if (mSecUser != null) {
for (String privilege : privs) {
for (MGlobalPrivilege userGrant : mSecUser) {
String userGrantPrivs = userGrant.getPrivilege();
if (privilege.equals(userGrantPrivs)) {
found = true;
if (grantOption) {
if (userGrant.getGrantOption()) {
userGrant.setGrantOption(false);
} else {
throw new MetaException("User " + userName + " does not have grant option with privilege " + privilege);
}
}
persistentObjs.add(userGrant);
break;
}
}
if (!found) {
throw new InvalidObjectException("No user grant found for privileges " + privilege);
}
}
}
} else if (hiveObject.getObjectType() == HiveObjectType.DATABASE) {
MDatabase dbObj = getMDatabase(hiveObject.getDbName());
if (dbObj != null) {
String db = hiveObject.getDbName();
boolean found = false;
List<MDBPrivilege> dbGrants = this.listPrincipalMDBGrants(userName, principalType, db);
for (String privilege : privs) {
for (MDBPrivilege dbGrant : dbGrants) {
String dbGrantPriv = dbGrant.getPrivilege();
if (privilege.equals(dbGrantPriv)) {
found = true;
if (grantOption) {
if (dbGrant.getGrantOption()) {
dbGrant.setGrantOption(false);
} else {
throw new MetaException("User " + userName + " does not have grant option with privilege " + privilege);
}
}
persistentObjs.add(dbGrant);
break;
}
}
if (!found) {
throw new InvalidObjectException("No database grant found for privileges " + privilege + " on database " + db);
}
}
}
} else if (hiveObject.getObjectType() == HiveObjectType.TABLE) {
boolean found = false;
List<MTablePrivilege> tableGrants = this.listAllMTableGrants(userName, principalType, hiveObject.getDbName(), hiveObject.getObjectName());
for (String privilege : privs) {
for (MTablePrivilege tabGrant : tableGrants) {
String tableGrantPriv = tabGrant.getPrivilege();
if (privilege.equalsIgnoreCase(tableGrantPriv)) {
found = true;
if (grantOption) {
if (tabGrant.getGrantOption()) {
tabGrant.setGrantOption(false);
} else {
throw new MetaException("User " + userName + " does not have grant option with privilege " + privilege);
}
}
persistentObjs.add(tabGrant);
break;
}
}
if (!found) {
throw new InvalidObjectException("No grant (" + privilege + ") found " + " on table " + hiveObject.getObjectName() + ", database is " + hiveObject.getDbName());
}
}
} else if (hiveObject.getObjectType() == HiveObjectType.PARTITION) {
boolean found = false;
Table tabObj = this.getTable(hiveObject.getDbName(), hiveObject.getObjectName());
String partName = null;
if (hiveObject.getPartValues() != null) {
partName = Warehouse.makePartName(tabObj.getPartitionKeys(), hiveObject.getPartValues());
}
List<MPartitionPrivilege> partitionGrants = this.listPrincipalMPartitionGrants(userName, principalType, hiveObject.getDbName(), hiveObject.getObjectName(), partName);
for (String privilege : privs) {
for (MPartitionPrivilege partGrant : partitionGrants) {
String partPriv = partGrant.getPrivilege();
if (partPriv.equalsIgnoreCase(privilege)) {
found = true;
if (grantOption) {
if (partGrant.getGrantOption()) {
partGrant.setGrantOption(false);
} else {
throw new MetaException("User " + userName + " does not have grant option with privilege " + privilege);
}
}
persistentObjs.add(partGrant);
break;
}
}
if (!found) {
throw new InvalidObjectException("No grant (" + privilege + ") found " + " on table " + tabObj.getTableName() + ", partition is " + partName + ", database is " + tabObj.getDbName());
}
}
} else if (hiveObject.getObjectType() == HiveObjectType.COLUMN) {
Table tabObj = this.getTable(hiveObject.getDbName(), hiveObject.getObjectName());
String partName = null;
if (hiveObject.getPartValues() != null) {
partName = Warehouse.makePartName(tabObj.getPartitionKeys(), hiveObject.getPartValues());
}
if (partName != null) {
List<MPartitionColumnPrivilege> mSecCol = listPrincipalMPartitionColumnGrants(userName, principalType, hiveObject.getDbName(), hiveObject.getObjectName(), partName, hiveObject.getColumnName());
boolean found = false;
if (mSecCol != null) {
for (String privilege : privs) {
for (MPartitionColumnPrivilege col : mSecCol) {
String colPriv = col.getPrivilege();
if (colPriv.equalsIgnoreCase(privilege)) {
found = true;
if (grantOption) {
if (col.getGrantOption()) {
col.setGrantOption(false);
} else {
throw new MetaException("User " + userName + " does not have grant option with privilege " + privilege);
}
}
persistentObjs.add(col);
break;
}
}
if (!found) {
throw new InvalidObjectException("No grant (" + privilege + ") found " + " on table " + tabObj.getTableName() + ", partition is " + partName + ", column name = " + hiveObject.getColumnName() + ", database is " + tabObj.getDbName());
}
}
}
} else {
List<MTableColumnPrivilege> mSecCol = listPrincipalMTableColumnGrants(userName, principalType, hiveObject.getDbName(), hiveObject.getObjectName(), hiveObject.getColumnName());
boolean found = false;
if (mSecCol != null) {
for (String privilege : privs) {
for (MTableColumnPrivilege col : mSecCol) {
String colPriv = col.getPrivilege();
if (colPriv.equalsIgnoreCase(privilege)) {
found = true;
if (grantOption) {
if (col.getGrantOption()) {
col.setGrantOption(false);
} else {
throw new MetaException("User " + userName + " does not have grant option with privilege " + privilege);
}
}
persistentObjs.add(col);
break;
}
}
if (!found) {
throw new InvalidObjectException("No grant (" + privilege + ") found " + " on table " + tabObj.getTableName() + ", column name = " + hiveObject.getColumnName() + ", database is " + tabObj.getDbName());
}
}
}
}
}
}
}
if (persistentObjs.size() > 0) {
if (grantOption) {
// If grant option specified, only update the privilege, don't remove it.
// Grant option has already been removed from the privileges in the section above
} else {
pm.deletePersistentAll(persistentObjs);
}
}
committed = commitTransaction();
} finally {
if (!committed) {
rollbackTransaction();
}
}
return committed;
}
Also used :
ArrayList(java.util.ArrayList)
MPartitionColumnPrivilege(org.apache.hadoop.hive.metastore.model.MPartitionColumnPrivilege)
InvalidObjectException(org.apache.hadoop.hive.metastore.api.InvalidObjectException)
MStringList(org.apache.hadoop.hive.metastore.model.MStringList)
ArrayList(java.util.ArrayList)
List(java.util.List)
LinkedList(java.util.LinkedList)
MTableColumnPrivilege(org.apache.hadoop.hive.metastore.model.MTableColumnPrivilege)
MetaException(org.apache.hadoop.hive.metastore.api.MetaException)
Table(org.apache.hadoop.hive.metastore.api.Table)
MVersionTable(org.apache.hadoop.hive.metastore.model.MVersionTable)
MTable(org.apache.hadoop.hive.metastore.model.MTable)
HiveObjectRef(org.apache.hadoop.hive.metastore.api.HiveObjectRef)
MDBPrivilege(org.apache.hadoop.hive.metastore.model.MDBPrivilege)
MGlobalPrivilege(org.apache.hadoop.hive.metastore.model.MGlobalPrivilege)
MDatabase(org.apache.hadoop.hive.metastore.model.MDatabase)
HiveObjectPrivilege(org.apache.hadoop.hive.metastore.api.HiveObjectPrivilege)
MPartitionPrivilege(org.apache.hadoop.hive.metastore.model.MPartitionPrivilege)
PrincipalType(org.apache.hadoop.hive.metastore.api.PrincipalType)
MTablePrivilege(org.apache.hadoop.hive.metastore.model.MTablePrivilege)
Example 7 with InvalidObjectException
use of org.apache.hadoop.hive.metastore.api.InvalidObjectException in project hive by apache.
the class ObjectStore method addRole.
@Override
public boolean addRole(String roleName, String ownerName) throws InvalidObjectException, MetaException, NoSuchObjectException {
boolean success = false;
boolean commited = false;
try {
openTransaction();
MRole nameCheck = this.getMRole(roleName);
if (nameCheck != null) {
throw new InvalidObjectException("Role " + roleName + " already exists.");
}
int now = (int) (System.currentTimeMillis() / 1000);
MRole mRole = new MRole(roleName, now, ownerName);
pm.makePersistent(mRole);
commited = commitTransaction();
success = true;
} finally {
if (!commited) {
rollbackTransaction();
}
}
return success;
}
Also used :
MRole(org.apache.hadoop.hive.metastore.model.MRole)
InvalidObjectException(org.apache.hadoop.hive.metastore.api.InvalidObjectException)
MConstraint(org.apache.hadoop.hive.metastore.model.MConstraint)
Example 8 with InvalidObjectException
use of org.apache.hadoop.hive.metastore.api.InvalidObjectException in project hive by apache.
the class ObjectStore method convertToMFunction.
private MFunction convertToMFunction(Function func) throws InvalidObjectException {
if (func == null) {
return null;
}
MDatabase mdb = null;
try {
mdb = getMDatabase(func.getDbName());
} catch (NoSuchObjectException e) {
LOG.error(StringUtils.stringifyException(e));
throw new InvalidObjectException("Database " + func.getDbName() + " doesn't exist.");
}
MFunction mfunc = new MFunction(func.getFunctionName(), mdb, func.getClassName(), func.getOwnerName(), func.getOwnerType().name(), func.getCreateTime(), func.getFunctionType().getValue(), convertToMResourceUriList(func.getResourceUris()));
return mfunc;
}
Also used :
MDatabase(org.apache.hadoop.hive.metastore.model.MDatabase)
NoSuchObjectException(org.apache.hadoop.hive.metastore.api.NoSuchObjectException)
InvalidObjectException(org.apache.hadoop.hive.metastore.api.InvalidObjectException)
MFunction(org.apache.hadoop.hive.metastore.model.MFunction)
Example 9 with InvalidObjectException
use of org.apache.hadoop.hive.metastore.api.InvalidObjectException in project hive by apache.
the class ObjectStore method grantRole.
@Override
public boolean grantRole(Role role, String userName, PrincipalType principalType, String grantor, PrincipalType grantorType, boolean grantOption) throws MetaException, NoSuchObjectException, InvalidObjectException {
boolean success = false;
boolean commited = false;
try {
openTransaction();
MRoleMap roleMap = null;
try {
roleMap = this.getMSecurityUserRoleMap(userName, principalType, role.getRoleName());
} catch (Exception e) {
}
if (roleMap != null) {
throw new InvalidObjectException("Principal " + userName + " already has the role " + role.getRoleName());
}
if (principalType == PrincipalType.ROLE) {
validateRole(userName);
}
MRole mRole = getMRole(role.getRoleName());
long now = System.currentTimeMillis() / 1000;
MRoleMap roleMember = new MRoleMap(userName, principalType.toString(), mRole, (int) now, grantor, grantorType.toString(), grantOption);
pm.makePersistent(roleMember);
commited = commitTransaction();
success = true;
} finally {
if (!commited) {
rollbackTransaction();
}
}
return success;
}
Also used :
MRole(org.apache.hadoop.hive.metastore.model.MRole)
InvalidObjectException(org.apache.hadoop.hive.metastore.api.InvalidObjectException)
MRoleMap(org.apache.hadoop.hive.metastore.model.MRoleMap)
JDOException(javax.jdo.JDOException)
InvalidInputException(org.apache.hadoop.hive.metastore.api.InvalidInputException)
MissingTableException(org.datanucleus.store.rdbms.exceptions.MissingTableException)
UnknownDBException(org.apache.hadoop.hive.metastore.api.UnknownDBException)
TException(org.apache.thrift.TException)
IOException(java.io.IOException)
NoSuchObjectException(org.apache.hadoop.hive.metastore.api.NoSuchObjectException)
MetaException(org.apache.hadoop.hive.metastore.api.MetaException)
JDOCanRetryException(javax.jdo.JDOCanRetryException)
InvalidPartitionException(org.apache.hadoop.hive.metastore.api.InvalidPartitionException)
JDODataStoreException(javax.jdo.JDODataStoreException)
JDOObjectNotFoundException(javax.jdo.JDOObjectNotFoundException)
UnknownTableException(org.apache.hadoop.hive.metastore.api.UnknownTableException)
UnknownPartitionException(org.apache.hadoop.hive.metastore.api.UnknownPartitionException)
InvalidObjectException(org.apache.hadoop.hive.metastore.api.InvalidObjectException)
Example 10 with InvalidObjectException
use of org.apache.hadoop.hive.metastore.api.InvalidObjectException in project hive by apache.
the class ObjectStore method convertToMIndex.
private MIndex convertToMIndex(Index index) throws InvalidObjectException, MetaException {
StorageDescriptor sd = index.getSd();
if (sd == null) {
throw new InvalidObjectException("Storage descriptor is not defined for index.");
}
MStorageDescriptor msd = this.convertToMStorageDescriptor(sd);
MTable origTable = getMTable(index.getDbName(), index.getOrigTableName());
if (origTable == null) {
throw new InvalidObjectException("Original table does not exist for the given index.");
}
String[] qualified = MetaStoreUtils.getQualifiedName(index.getDbName(), index.getIndexTableName());
MTable indexTable = getMTable(qualified[0], qualified[1]);
if (indexTable == null) {
throw new InvalidObjectException("Underlying index table does not exist for the given index.");
}
return new MIndex(HiveStringUtils.normalizeIdentifier(index.getIndexName()), origTable, index.getCreateTime(), index.getLastAccessTime(), index.getParameters(), indexTable, msd, index.getIndexHandlerClass(), index.isDeferredRebuild());
}
Also used :
MTable(org.apache.hadoop.hive.metastore.model.MTable)
StorageDescriptor(org.apache.hadoop.hive.metastore.api.StorageDescriptor)
MStorageDescriptor(org.apache.hadoop.hive.metastore.model.MStorageDescriptor)
MIndex(org.apache.hadoop.hive.metastore.model.MIndex)
InvalidObjectException(org.apache.hadoop.hive.metastore.api.InvalidObjectException)
MStorageDescriptor(org.apache.hadoop.hive.metastore.model.MStorageDescriptor)
Aggregations
InvalidObjectException (org.apache.hadoop.hive.metastore.api.InvalidObjectException)36
MetaException (org.apache.hadoop.hive.metastore.api.MetaException)21
NoSuchObjectException (org.apache.hadoop.hive.metastore.api.NoSuchObjectException)21
Table (org.apache.hadoop.hive.metastore.api.Table)14
TException (org.apache.thrift.TException)14
ArrayList (java.util.ArrayList)13
Partition (org.apache.hadoop.hive.metastore.api.Partition)11
IOException (java.io.IOException)8
AlreadyExistsException (org.apache.hadoop.hive.metastore.api.AlreadyExistsException)8
InvalidInputException (org.apache.hadoop.hive.metastore.api.InvalidInputException)8
MTable (org.apache.hadoop.hive.metastore.model.MTable)8
FieldSchema (org.apache.hadoop.hive.metastore.api.FieldSchema)7
InvalidMetaException (com.netflix.metacat.common.server.connectors.exception.InvalidMetaException)6
ConnectorException (com.netflix.metacat.common.server.connectors.exception.ConnectorException)5
List (java.util.List)5
TableNotFoundException (com.netflix.metacat.common.server.connectors.exception.TableNotFoundException)4
UnknownDBException (org.apache.hadoop.hive.metastore.api.UnknownDBException)4
MConstraint (org.apache.hadoop.hive.metastore.model.MConstraint)4
InvalidOperationException (org.apache.hadoop.hive.metastore.api.InvalidOperationException)3
SerDeInfo (org.apache.hadoop.hive.metastore.api.SerDeInfo)3
