Uploaded image for project: 'Apache Trafodion (Retired)'
  1. Apache Trafodion (Retired)
  2. TRAFODION-2561 UDRs for non-trusted users
  3. TRAFODION-2562

User ids for isolated UDRs

    XMLWordPrintableJSON

Details

    • Sub-task
    • Status: Open
    • Major
    • Resolution: Unresolved
    • 2.0-incubating
    • None
    • installer, sql-cmu
    • None

    Description

      In order to implement "isolated" UDRs, we need to have a user id for the tdm_udrserv process that executes UDRs. Right now this process runs under the same user id as the Trafodion engine, which means that the system administrator has to trust the UDR writer to a great degree. Running UDRs with a user id that has no access to HBase and HDFS and to the internal resources of the Trafodion engine would reduce the required trust by a great deal.

      Attachments

        Activity

          People

            Unassigned Unassigned
            hzeller Hans Zeller
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated: