My team discovered a potential security pitfall (at least for our use case) while using the hive view with Ranger authorization. If a user tries to access a table that he should not know about (not visible in the hive view), an error message will come back saying that he has no access to the the columns in the that table, and it lists all those columns. Now the user will know what all the columns are.
Is there a way to customize the error message in the ambari hive view, so that the user will not see this? Is there a way to customize the error messages?
Any help would be much appreciated!
@Raffi Abberbock Ranger throws this error which is shown by the Ambari hive view, if at all if you want to change the message it will be in Ranger. Could you please raise an Apache Ranger JIRA for your needs?