124 lines
3.0 KiB
Protocol Buffer
124 lines
3.0 KiB
Protocol Buffer
/**
|
|
* Licensed to the Apache Software Foundation (ASF) under one
|
|
* or more contributor license agreements. See the NOTICE file
|
|
* distributed with this work for additional information
|
|
* regarding copyright ownership. The ASF licenses this file
|
|
* to you under the Apache License, Version 2.0 (the
|
|
* "License"); you may not use this file except in compliance
|
|
* with the License. You may obtain a copy of the License at
|
|
*
|
|
* http://www.apache.org/licenses/LICENSE-2.0
|
|
*
|
|
* Unless required by applicable law or agreed to in writing, software
|
|
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
* See the License for the specific language governing permissions and
|
|
* limitations under the License.
|
|
*/
|
|
package hbase.pb;
|
|
|
|
option java_package = "org.apache.hadoop.hbase.protobuf.generated";
|
|
option java_outer_classname = "AccessControlProtos";
|
|
option java_generic_services = true;
|
|
option java_generate_equals_and_hash = true;
|
|
option optimize_for = SPEED;
|
|
|
|
import "HBase.proto";
|
|
|
|
message Permission {
|
|
enum Action {
|
|
READ = 0;
|
|
WRITE = 1;
|
|
EXEC = 2;
|
|
CREATE = 3;
|
|
ADMIN = 4;
|
|
}
|
|
enum Type {
|
|
Global = 1;
|
|
Namespace = 2;
|
|
Table = 3;
|
|
}
|
|
required Type type = 1;
|
|
optional GlobalPermission global_permission = 2;
|
|
optional NamespacePermission namespace_permission = 3;
|
|
optional TablePermission table_permission = 4;
|
|
}
|
|
|
|
message TablePermission {
|
|
optional TableName table_name = 1;
|
|
optional bytes family = 2;
|
|
optional bytes qualifier = 3;
|
|
repeated Permission.Action action = 4;
|
|
}
|
|
|
|
message NamespacePermission {
|
|
optional bytes namespace_name = 1;
|
|
repeated Permission.Action action = 2;
|
|
}
|
|
|
|
message GlobalPermission {
|
|
repeated Permission.Action action = 1;
|
|
}
|
|
|
|
message UserPermission {
|
|
required bytes user = 1;
|
|
required Permission permission = 3;
|
|
}
|
|
|
|
/**
|
|
* Content of the /hbase/acl/<table or namespace> znode.
|
|
*/
|
|
message UsersAndPermissions {
|
|
message UserPermissions {
|
|
required bytes user = 1;
|
|
repeated Permission permissions = 2;
|
|
}
|
|
|
|
repeated UserPermissions user_permissions = 1;
|
|
}
|
|
|
|
message GrantRequest {
|
|
required UserPermission user_permission = 1;
|
|
}
|
|
|
|
message GrantResponse {
|
|
}
|
|
|
|
message RevokeRequest {
|
|
required UserPermission user_permission = 1;
|
|
}
|
|
|
|
message RevokeResponse {
|
|
}
|
|
|
|
message GetUserPermissionsRequest {
|
|
optional Permission.Type type = 1;
|
|
optional TableName table_name = 2;
|
|
optional bytes namespace_name = 3;
|
|
}
|
|
|
|
message GetUserPermissionsResponse {
|
|
repeated UserPermission user_permission = 1;
|
|
}
|
|
|
|
message CheckPermissionsRequest {
|
|
repeated Permission permission = 1;
|
|
}
|
|
|
|
message CheckPermissionsResponse {
|
|
}
|
|
|
|
service AccessControlService {
|
|
rpc Grant(GrantRequest)
|
|
returns (GrantResponse);
|
|
|
|
rpc Revoke(RevokeRequest)
|
|
returns (RevokeResponse);
|
|
|
|
rpc GetUserPermissions(GetUserPermissionsRequest)
|
|
returns (GetUserPermissionsResponse);
|
|
|
|
rpc CheckPermissions(CheckPermissionsRequest)
|
|
returns (CheckPermissionsResponse);
|
|
}
|