Add configuration property for Hive view security mode

[joechu1]

Description

This PR provides a configuration property to set the security mode used for Hive views. Hive views are hard-coded to use the DEFINER mode, which may not always be the desired mode for checking user permissions.

Is this change a fix, improvement, new feature, refactoring, or other?

Improvement

Is this a change to the core query engine, a connector, client library, or the SPI interfaces? (be specific)

Hive connector

How would you describe this change to a non-technical end user or system administrator?

The configuration property determines whether access to a Hive view is granted based on the permissions of the user who created the view, or the user who is querying the view, assuming that the security permission checks are enabled.

Related issues, pull requests, and links

• Based on the work done in #7358

Documentation

( ) No documentation is needed.
( ) Sufficient documentation is included in this PR.
( ) Documentation PR is available with #prnumber.
( ) Documentation issue #issuenumber is filed, and can be handled later.

Release notes

( ) No release notes entries required.
( ) Release notes entries required with the following suggested text:

# Section
* Fix some things. ({issue}`issuenumber`)

[dain]

why does this have a hard coded true but the next line is configurable? If this is correct, add a comment explaining what is happening here

[dain]

Also, this appears to be the only caller of this in the PR, and it is hard coded to true. Does this needt to be a parameter at all?

[joechu1]

Had the wrong approach; re-wrote this based on findepi's guidance

[dain]

This formatting change doesn't seem right

[joechu1]

Misread this; thought I was fixing the indentation but the original was correct.

[findepi]

This is a 3rd config toggle pertaining to Hive Views translation.
I think we should group the configs together under one namespace: hive.hive-views.*.

I posted a PR to discuss that: #12238

[joechu1]

I updated the config name to follow what is being proposed in #12238

[findepi]

per above, pass the configuration to createViewReader and don't pass it to decodeViewData()

[joechu1]

Thanks, re-wrote this based on your guidance.

[findepi]

@joechu1 since there is an agreement to rename configs as in #12238

unfortunately, this will cause conflicts here. can you please rebase your PR on that one, or wait for the other one to be merged?

[joechu1]

PR has been rebased

[findepi]

(rebased after #12238 merged)

[mosabua]

Documentation was missed. I created a PR for adding that in.. please review #12272

[findepi]

Does it work, if owner is always Optional.empty() (line above)?

[joechu1]

This does work; although the ConnectorViewDefinition returns without an owner, that information is then added again in HiveMetadata#getView.