From c0b49a638fe2e4e3892f0be40c441f603ca510f9 Mon Sep 17 00:00:00 2001 From: Mayuri Nehate <33225191+mayurinehate@users.noreply.github.com> Date: Thu, 12 Dec 2024 15:32:15 +0530 Subject: [PATCH] docs(ingest/snowflake): update permissions for dynamic tables (#12074) --- docs/quick-ingestion-guides/snowflake/setup.md | 5 +++++ metadata-ingestion/docs/sources/snowflake/snowflake_pre.md | 4 ++++ 2 files changed, 9 insertions(+) diff --git a/docs/quick-ingestion-guides/snowflake/setup.md b/docs/quick-ingestion-guides/snowflake/setup.md index af5f15492376b5..aaa9c67014814f 100644 --- a/docs/quick-ingestion-guides/snowflake/setup.md +++ b/docs/quick-ingestion-guides/snowflake/setup.md @@ -43,6 +43,8 @@ In order to configure ingestion from Snowflake, you'll first have to ensure you grant select on future external tables in database identifier($db_var) to role datahub_role; grant select on all views in database identifier($db_var) to role datahub_role; grant select on future views in database identifier($db_var) to role datahub_role; + grant select on all dynamic tables in database identifier($db_var) to role datahub_role; + grant select on future dynamic tables in database identifier($db_var) to role datahub_role; -- Grant access to view tables and views grant references on all tables in database identifier($db_var) to role datahub_role; @@ -51,6 +53,9 @@ In order to configure ingestion from Snowflake, you'll first have to ensure you grant references on future external tables in database identifier($db_var) to role datahub_role; grant references on all views in database identifier($db_var) to role datahub_role; grant references on future views in database identifier($db_var) to role datahub_role; + -- Grant access to dynamic tables + grant monitor on all dynamic tables in database identifier($db_var) to role datahub_role; + grant monitor on future dynamic tables in database identifier($db_var) to role datahub_role; -- Assign privileges to extract lineage and usage statistics from Snowflake by executing the below query. grant imported privileges on database snowflake to role datahub_role; diff --git a/metadata-ingestion/docs/sources/snowflake/snowflake_pre.md b/metadata-ingestion/docs/sources/snowflake/snowflake_pre.md index 75bd579417a48f..4cfbc470e8c239 100644 --- a/metadata-ingestion/docs/sources/snowflake/snowflake_pre.md +++ b/metadata-ingestion/docs/sources/snowflake/snowflake_pre.md @@ -23,12 +23,16 @@ grant references on all external tables in database "" to role da grant references on future external tables in database "" to role datahub_role; grant references on all views in database "" to role datahub_role; grant references on future views in database "" to role datahub_role; +grant monitor on all dynamic tables in database "" to role datahub_role; +grant monitor on future dynamic tables in database "" to role datahub_role; // If you ARE using Snowflake Profiling or Classification feature: Grant select privileges to your tables grant select on all tables in database "" to role datahub_role; grant select on future tables in database "" to role datahub_role; grant select on all external tables in database "" to role datahub_role; grant select on future external tables in database "" to role datahub_role; +grant select on all dynamic tables in database "" to role datahub_role; +grant select on future dynamic tables in database "" to role datahub_role; // Create a new DataHub user and assign the DataHub role to it create user datahub_user display_name = 'DataHub' password='' default_role = datahub_role default_warehouse = '';