Document Details

EnrapturedElf

Uploaded by EnrapturedElf

Derar Alhussein

Tags

data object privileges access controls data governance database management

Summary

This document explains data object privileges, specifically within a data governance model. It outlines how to grant, deny, and revoke access to different data objects, like tables, schemas, and catalogs, using SQL statements. It also discusses the concept of privileges by role in managing access.

Full Transcript

Data object privileges Learning Objectives u Data governance model u Managing Permissions for Data objects Derar Alhussein © Udemy | Databricks Certified Data Engineer Associate - Preparation Data governance model u Programmatically grant, deny, and revoke access to data objects...

Data object privileges Learning Objectives u Data governance model u Managing Permissions for Data objects Derar Alhussein © Udemy | Databricks Certified Data Engineer Associate - Preparation Data governance model u Programmatically grant, deny, and revoke access to data objects GRANT Privilege ON Object TO u GRANT SELECT ON TABLE my_table TO [email protected] Derar Alhussein © Udemy | Databricks Certified Data Engineer Associate - Preparation Data objects GRANT Privilege ON Object TO Object Scope CATALOG controls access to the entire data catalog. SCHEMA controls access to a database. TABLE controls access to a managed or external table. VIEW controls access to SQL views. FUNCTION controls access to a named function. ANY FILE controls access to the underlying filesystem. Derar Alhussein © Udemy | Databricks Certified Data Engineer Associate - Preparation Privileges GRANT Privilege ON Object TO Privilege Ability SELECT read access to an object. MODIFY add, delete, and modify data to or from an object. CREATE create an object READ_METADATA view an object and its metadata. USAGE No effect! required to perform any action on a database object. ALL PRIVILEGES gives all privileges Derar Alhussein © Udemy | Databricks Certified Data Engineer Associate - Preparation Granting Privileges by Role Role Can grant access privileges for Databricks All objects in the catalog and the administrator underlying filesystem. Catalog Catalog owner All objects in the catalog. Schema Database owner All objects in the database. (Database) Table owner Only the table Table View Function … … Derar Alhussein © Udemy | Databricks Certified Data Engineer Associate - Preparation More operations u Grant u DENY u REVOKE u SHOW GRANTS Derar Alhussein © Udemy | Databricks Certified Data Engineer Associate - Preparation

Use Quizgecko on...
Browser
Browser