Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Check out our newest addition to the community, the Cloudera Data Analytics (CDA) group hub.
Solved Go to solution

How to find out the roles / groups assigned to a schema / DB in Hive

Labels:
prakodi
Explorer

Created ‎02-10-2023 06:17 AM

Hi All,

 

I want to find out what are the roles / groups assigned to a DB / Schema in Hive, how I can get those details ? please suggest.

 

Thank you.

 

Regards,

PK

538 Views
0 Kudos
1 ACCEPTED SOLUTION

JoseManuel
Cloudera Employee

Created ‎02-17-2023 10:46 AM

PK,

If you have access to the Sentry Store backend use a query like this:

 

SELECT
r.ROLE_NAME,
g.GROUP_NAME,
p.*,
FROM_UNIXTIME(p.CREATE_TIME / 1000) as CREATE_TIME_DATE
FROM
SENTRY_ROLE r
INNER JOIN SENTRY_ROLE_GROUP_MAP rgm ON r.ROLE_ID = rgm.ROLE_ID
INNER JOIN SENTRY_GROUP g ON g.GROUP_ID = rgm.GROUP_ID
INNER JOIN SENTRY_ROLE_DB_PRIVILEGE_MAP rpm ON r.ROLE_ID = rpm.ROLE_ID
INNER JOIN SENTRY_DB_PRIVILEGE p ON p.DB_PRIVILEGE_ID = rpm.DB_PRIVILEGE_ID;

 

Hope it helps,

-JMP

View solution in original post

385 Views
0 Kudos
7 REPLIES 7

JoseManuel
Cloudera Employee

Created ‎02-13-2023 10:08 AM

What is the specific version of HDP /CDH / CDP ?

486 Views
0 Kudos

prakodi
Explorer

Created ‎02-14-2023 04:43 AM

CDH 6.3

462 Views
0 Kudos

JoseManuel
Cloudera Employee

Created ‎02-14-2023 08:41 AM

Use the following command reference

These are to be executed from Hive Beeline to view Role Privileges and Assignments

> SHOW ROLES;
List available roles

> SHOW CURRENT ROLES;
List roles assigned to current user/group

> SHOW ROLE GRANT GROUP <GROUP NAME>;
Lists the roles that are assigned to the specified group.

> SHOW GRANT ROLE <ROLE>;
Lists the permissions that have been granted to the specified role.

>SHOW GRANT ROLE <role name> ON <object type> <object name>
Lists the permissions that a role has on an object.

442 Views
0 Kudos

prakodi
Explorer

Created on ‎02-17-2023 09:52 AM - edited ‎02-17-2023 09:55 AM

Hi,

 

Thank you for the reply, but if I know the role or group, I can easily get the details from above commands, but for a specific DB , if I want to  find out what are the roles assigned, is there a way to do it ? 

 

Assume, my schema name is schema1, how to find out the roles assigned to this schema ? 

 

Thank you.

 

Regards,

PK

391 Views
0 Kudos

DianaTorres
Community Manager

Created ‎02-17-2023 09:45 AM

@prakodi Has the reply helped resolve your issue? If so, please mark the appropriate reply as the solution, as it will make it easier for others to find the answer in the future. Thanks

Regards,

Diana Torres,
Community Moderator

Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:
394 Views
0 Kudos

JoseManuel
Cloudera Employee

Created ‎02-17-2023 10:46 AM

PK,

If you have access to the Sentry Store backend use a query like this:

 

SELECT
r.ROLE_NAME,
g.GROUP_NAME,
p.*,
FROM_UNIXTIME(p.CREATE_TIME / 1000) as CREATE_TIME_DATE
FROM
SENTRY_ROLE r
INNER JOIN SENTRY_ROLE_GROUP_MAP rgm ON r.ROLE_ID = rgm.ROLE_ID
INNER JOIN SENTRY_GROUP g ON g.GROUP_ID = rgm.GROUP_ID
INNER JOIN SENTRY_ROLE_DB_PRIVILEGE_MAP rpm ON r.ROLE_ID = rpm.ROLE_ID
INNER JOIN SENTRY_DB_PRIVILEGE p ON p.DB_PRIVILEGE_ID = rpm.DB_PRIVILEGE_ID;

 

Hope it helps,

-JMP

386 Views
0 Kudos

prakodi
Explorer

Created ‎02-17-2023 11:04 AM

Thank you very much.

 

Regards,

PK

333 Views
0 Kudos
Take a Tour of the Community
Don't have an account?
Register
Your experience may be limited. Sign in to explore more.
Announcements
Product Announcements
CDP Public Cloud: May 2023 Release Summary
What's New @ Cloudera
Cloudera Operational Database (COD) provides enhancements to the --scale-type CDP CLI option
What's New @ Cloudera
Cloudera Operational Database (COD) UI supports creating a smaller cluster using a predefined Data Lake template
What's New @ Cloudera
Cloudera Operational Database (COD) supports scaling up the clusters vertically
Product Announcements
CDP Public Cloud: April 2023 Release Summary
View More Announcements