In some cases, the authorization is not as fine-grained as I could wish. Some examples:
If you give somebody a right to create a table in Hive database, then this user can also drop any table in this database. It would useful to user can only drop tables that she is the owner of, similarly to what “sticky-bit” provides for HDFS.
If you give somebody writes permissions to the Solr policy file to define privileges for some Solr collection, this user can actually change privileges for any collection.
What business problems are you solving with the product? What benefits have you realized?
* We monitor all Apache Sentry reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.