fe/src/main/java/org/apache/impala/authorization/sentry/SentryAuthorizableFactory.java

// Licensed to the Apache Software Foundation (ASF) under one
// or more contributor license agreements.  See the NOTICE file
// distributed with this work for additional information
// regarding copyright ownership.  The ASF licenses this file
// to you under the Apache License, Version 2.0 (the
// "License"); you may not use this file except in compliance
// with the License.  You may obtain a copy of the License at
//
//   http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing,
// software distributed under the License is distributed on an
// "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
// KIND, either express or implied.  See the License for the
// specific language governing permissions and limitations
// under the License.

package org.apache.impala.authorization.sentry;

import com.google.common.base.Preconditions;
import org.apache.impala.authorization.Authorizable;
import org.apache.impala.authorization.AuthorizableFactory;

/**
 * A Sentry implementation of {@link AuthorizableFactory}.
 */
public class SentryAuthorizableFactory implements AuthorizableFactory {
  @Override
  public Authorizable newServer(String serverName) {
    return new SentryAuthorizableServer(serverName);
  }

  @Override
  public Authorizable newDatabase(String dbName, String ownerUser) {
    // Sentry works with OWNER privilege. Hence ownerUser is ignored.
    Preconditions.checkNotNull(dbName);
    return new SentryAuthorizableDb(dbName);
  }

  @Override
  public Authorizable newTable(String dbName, String tableName, String ownerUser) {
    // Sentry works with OWNER privilege. Hence ownerUser is ignored.
    Preconditions.checkNotNull(dbName);
    Preconditions.checkNotNull(tableName);
    return new SentryAuthorizableTable(dbName, tableName);
  }

  @Override
  public Authorizable newColumnAllTbls(String dbName, String dbOwnerUser) {
    // Sentry works with OWNER privilege. Hence ownerUser is ignored.
    Preconditions.checkNotNull(dbName);
    return new SentryAuthorizableColumn(dbName);
  }

  @Override
  public Authorizable newColumnInTable(
      String dbName, String tableName, String dbOwnerUser) {
    // Sentry works with OWNER privilege. Hence ownerUser is ignored.
    Preconditions.checkNotNull(dbName);
    Preconditions.checkNotNull(tableName);
    return new SentryAuthorizableColumn(dbName, tableName);
  }

  @Override
  public Authorizable newColumnInTable(
      String dbName, String tableName, String columnName, String tblOwnerUser) {
    // Sentry works with OWNER privilege. Hence ownerUser is ignored.
    Preconditions.checkNotNull(dbName);
    Preconditions.checkNotNull(tableName);
    Preconditions.checkNotNull(columnName);
    return new SentryAuthorizableColumn(dbName, tableName, columnName);
  }

  @Override
  public Authorizable newUri(String uri) {
    Preconditions.checkNotNull(uri);
    return new SentryAuthorizableUri(uri);
  }

  @Override
  public Authorizable newFunction(String dbName, String fnName) {
    Preconditions.checkNotNull(dbName);
    Preconditions.checkNotNull(fnName);
    return new SentryAuthorizableFn(dbName, fnName);
  }
}