MapR 5.1 is at End of Life (EOL) and no longer supported. Please see the latest documentation. This documentation is not being updated.

Home
5.1 DB & Streams
This section covers the MapR-DB, MapR-Streams, and MapR-Gateways features. Each feature may contain both administrator and developer topics.
MapR-DB
MapR-DB as a Document Database
MapR-DB supports OJAI documents as a native data store. OJAI documents are stored in a compact binary format, not as plain ASCII text.
Granting or Denying Access to Fields with Access-Control Expressions
By using access-control expressions (ACEs), you can grant or deny access to fields and column families that are in JSON tables.

MapR 5.1 Documentation

5.1 DB & Streams
This section covers the MapR-DB, MapR-Streams, and MapR-Gateways features. Each feature may contain both administrator and developer topics.
- MapR-DB
  - Architecture of MapR-DB
    MapR-DB's architecture gives it a large of advantages over other NoSQL databases.
  - Performance Enhancements for SSD Based MapR-DB Deployments
  - MapR-DB as a Document Database
    MapR-DB supports OJAI documents as a native data store. OJAI documents are stored in a compact binary format, not as plain ASCII text.
    - OJAI Documents
      An OJAI document is a tree of fields. Each field has a type and a value, and also has either a name or an array index. Field names are strings. The root of each document is a map.
    - JSON Tables
      Documents are stored in JSON tables, which are tables in which every row is an OJAI document.
    - Creating, Reading, Updating, and Deleting Documents and Tables with the MapR-DB JSON Java API Library
      The basic tasks that you can perform with the API library involve the Admin, Document, DocumentMutation, QueryCondition, Table, and TableDescriptor interfaces.
    - Listing Tables with the MapR-DB JSON Java API Library
      List the JSON tables that are in a folder by calling an Admin object's listTables() method, passing as an argument the path of the folder.
    - Altering JSON Tables with the MapR-DB OJAI Java API Library
      Change the values of table attributes by using a TableDescriptor object and then passing that object to the Admin interface's altertable() method.
    - Deleting JSON Tables with the MapR-DB OJAI Java API Library
      Delete a JSON table by calling an Admin object's deleteTable() method, passing as an argument the path of the table to delete.
    - Compiling and Running Applications that Access JSON Tables and Documents
      You can compile applications that use the MapR-DB JSON API by using the required JAR file from the MapR Maven repository or from the MapR installation. Run applications with the mapr command.
    - Tuning Parameters for Client Applications That Access MapR-DB JSON Tables
      Though tuning client applications is generally not necessary, MapR does offer tuning parameters to change the behavior of client-side caching.
    - Loading Documents into JSON Tables
      There are three command-line utilities for loading documents into JSON tables: mapr copytable, mapr importtable (which works in conjunction with the mapr exporttable utility), and mapr importJSON
    - MapR-DB JSON MapReduce API Library
      This API library extends the Apache Hadoop MapReduce framework, so that you can write your own MapReduce applications to write data from one JSON table to another.
    - Column Families in JSON Tables
      JSON tables store data in column families, which are collections of fields that are stored together on disk.
    - Granting or Denying Access to Fields with Access-Control Expressions
      By using access-control expressions (ACEs), you can grant or deny access to fields and column families that are in JSON tables.
      - How to Obtain readperm and writeperm on a Field
        In this scenario, you want to perform an operation on a field, and the operation requires that you have readperm and writeperm on that field. How you obtain these permissions depends on whether the field is in the default column family or a non-default column family.
      - How to Obtain readperm or writeperm on a Field
        In this scenario, you want to perform an operation on a field, and the operation requires that you have readperm or writeperm on that field. How you obtain either permission depends on whether the field is in the default column family or a non-default column family.
      - Setting Permissions on Arrays
        Permissions apply to an entire array, not to individual elements in an array. However, it is possible to set permissions on fields within documents or maps that are stored in an array.
      - Default Permissions for JSON Tables
        The following table summarizes the default access-control expressions for the supported ways of setting the read, traverse, and write permissions.
    - Getting Started with MapR-DB JSON and OJAI
  - MapR-DB as a Wide-Column Database
- MapR Streams
  MapR Streams brings integrated publish/subscribe messaging to the MapR Converged Data Platform.
- MapR Gateways
  A MapR gateway mediates one-way communication between a source MapR cluster and a destination cluster. MapR-DB binary tables and MapR Streams streams can be replicated.

Granting or Denying Access to Fields with Access-Control Expressions

By using access-control expressions (ACEs), you can grant or deny access to fields and column families that are in JSON tables.

For an explanation of the syntax of ACEs, see Syntax of Access Control Expressions.

There are three types of permission:

Traverse (traverseperm)
Read (readperm)
Write (writeperm)

Traverse (`traverseperm`)

This permission allows the grantee to descend a hierarchy of fields to access the fields that the grantee has write or read permission on.

For example, suppose that a user has read and write access only on field b in this document.

To access field b, the user would need to be able to traverse (pass through) field a. In this case, because the entire document is in the default column family, the user could be granted traverse permission on the default column family. Field a would inherit the traverse permission.

If traverse permission on the default column family were denied the user, it would not be possible for the user to access field b. Granting traverse permission on field a in this case would have no effect.

In the next example, field a is a column family named cf1.

To be able to read and write at field b, the user could be granted the traverse permission on the column family.

Read (`readperm`)

This permission allows the grantee to read from a field.

This permission extends to fields that are nested below the field that the permission was granted on. However, grantees can be explicitly denied the permission on any of the nested fields.

Write (`writeperm`)

This permission allows the grantee to delete a field, insert a value into a field, or overwrite a field's value.

As illustrated in the following two diagrams, deleting a field also deletes all fields that are nested within that field, even those fields on which the write permission is explicitly denied.