security issue: Spark can Run SQL on files directly

Question

security issue: Spark can Run SQL on files directly

Closed this issue 5 years ago · 6 comments

Currenlly, Spark can Run SQL on files directly, for example:
val sqlDF = spark.sql("SELECT * FROM parquet.examples/src/main/resources/users.parquet")

It make some other user can explore data directly from files.
What do you think @yaooqinn ?

Answer 1 · 2020-03-05T07:26:30.000Z

use ranger hdfs plugin

Answer 2 · 2020-03-05T07:30:39.000Z

But is any conflig between parquet hive table (user table) and hdfs parquet file (user parquet file) if i set diff policy ?

Answer 3 · 2020-03-05T07:46:21.000Z

I want custom filter to prevent user do that, any suggestion which class to look for ?

Answer 4 · 2020-03-05T08:08:48.000Z

I am not very sure, you can look up the logical plan to see if any pattern you can match to prohibit such behavior

Answer 5 · 2020-03-05T08:11:59.000Z

I am not very sure, you can look up the logical plan to see if any pattern you can match to prohibit such behavior

ok, i will give a try.
Thanks

Answer 6 · 2020-03-08T04:48:18.000Z

Closed issue as it doesnt relate to this plugin.
Thanks.