![]() ![]() ![]() To understand Snowflake access control, it’s important for you to understand that this context exists and what it consists of. This context is unique to the worksheet you’re in and every worksheet can have a different context. You can easily see your context in the Snowflake UI: Whenever you run a command in Snowflake, it runs in a session context. Need more help designing privileges in Snowflake? Contact me! This post is the result of my working through privileges, roles and permissions in Snowflake. If you want to skip to that, see how I set up Snowflake privileges. This exercise has been really helpful for me to understand how I want to set up Snowflake permissions for my organization. One of the most difficult things was documenting which privilege allowed me to execute which statements. So over Christmas vacation (Merry Christmas everybody!) I did a deep dive into Snowflake access control. This worked well for me and the few other people who were helping me incubate and test the product, but as we got closer to rolling out across our entire organization, I was uncomfortable with how messy our permissions had gotten. Whenever I had to figure out the permissions to do something, I’d grant myself the permissions and away I’d go. Figuring out the feature set was most pressing for me, and privileges were a second thought. I started out setting up tables, then views, procedures, functions, pipes, stages, integrations, etc. When I first started working with Snowflake, I was trying to figure out what was possible – what I could do. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |