Snowflake v0.55.0, Jun 7 24

Snowflake v0.55.0 published on Friday, Jun 7, 2024 by Pulumi

snowflake.RowAccessPolicyGrant

Explore with Pulumi AI

Snowflake v0.55.0 published on Friday, Jun 7, 2024 by Pulumi

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as snowflake from "@pulumi/snowflake";

const grant = new snowflake.RowAccessPolicyGrant("grant", {
    databaseName: "database",
    schemaName: "schema",
    rowAccessPolicyName: "row_access_policy",
    privilege: "APPLY",
    roles: [
        "role1",
        "role2",
    ],
    withGrantOption: false,
});

import pulumi
import pulumi_snowflake as snowflake

grant = snowflake.RowAccessPolicyGrant("grant",
    database_name="database",
    schema_name="schema",
    row_access_policy_name="row_access_policy",
    privilege="APPLY",
    roles=[
        "role1",
        "role2",
    ],
    with_grant_option=False)

package main

import (
	"github.com/pulumi/pulumi-snowflake/sdk/go/snowflake"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := snowflake.NewRowAccessPolicyGrant(ctx, "grant", &snowflake.RowAccessPolicyGrantArgs{
			DatabaseName:        pulumi.String("database"),
			SchemaName:          pulumi.String("schema"),
			RowAccessPolicyName: pulumi.String("row_access_policy"),
			Privilege:           pulumi.String("APPLY"),
			Roles: pulumi.StringArray{
				pulumi.String("role1"),
				pulumi.String("role2"),
			},
			WithGrantOption: pulumi.Bool(false),
		})
		if err != nil {
			return err
		}
		return nil
	})
}

using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Snowflake = Pulumi.Snowflake;

return await Deployment.RunAsync(() => 
{
    var grant = new Snowflake.RowAccessPolicyGrant("grant", new()
    {
        DatabaseName = "database",
        SchemaName = "schema",
        RowAccessPolicyName = "row_access_policy",
        Privilege = "APPLY",
        Roles = new[]
        {
            "role1",
            "role2",
        },
        WithGrantOption = false,
    });

});

package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.snowflake.RowAccessPolicyGrant;
import com.pulumi.snowflake.RowAccessPolicyGrantArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        var grant = new RowAccessPolicyGrant("grant", RowAccessPolicyGrantArgs.builder()
            .databaseName("database")
            .schemaName("schema")
            .rowAccessPolicyName("row_access_policy")
            .privilege("APPLY")
            .roles(            
                "role1",
                "role2")
            .withGrantOption(false)
            .build());

    }
}

resources:
  grant:
    type: snowflake:RowAccessPolicyGrant
    properties:
      databaseName: database
      schemaName: schema
      rowAccessPolicyName: row_access_policy
      privilege: APPLY
      roles:
        - role1
        - role2
      withGrantOption: false

Create RowAccessPolicyGrant Resource

Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

Constructor syntax

new RowAccessPolicyGrant(name: string, args: RowAccessPolicyGrantArgs, opts?: CustomResourceOptions);

@overload
def RowAccessPolicyGrant(resource_name: str,
                         args: RowAccessPolicyGrantArgs,
                         opts: Optional[ResourceOptions] = None)

@overload
def RowAccessPolicyGrant(resource_name: str,
                         opts: Optional[ResourceOptions] = None,
                         database_name: Optional[str] = None,
                         row_access_policy_name: Optional[str] = None,
                         schema_name: Optional[str] = None,
                         enable_multiple_grants: Optional[bool] = None,
                         privilege: Optional[str] = None,
                         revert_ownership_to_role_name: Optional[str] = None,
                         roles: Optional[Sequence[str]] = None,
                         with_grant_option: Optional[bool] = None)

func NewRowAccessPolicyGrant(ctx *Context, name string, args RowAccessPolicyGrantArgs, opts ...ResourceOption) (*RowAccessPolicyGrant, error)

public RowAccessPolicyGrant(string name, RowAccessPolicyGrantArgs args, CustomResourceOptions? opts = null)

public RowAccessPolicyGrant(String name, RowAccessPolicyGrantArgs args)
public RowAccessPolicyGrant(String name, RowAccessPolicyGrantArgs args, CustomResourceOptions options)

type: snowflake:RowAccessPolicyGrant
properties: # The arguments to resource properties.
options: # Bag of options to control resource's behavior.

Parameters

name string: The unique name of the resource.
args RowAccessPolicyGrantArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

resource_name str: The unique name of the resource.
args RowAccessPolicyGrantArgs: The arguments to resource properties.
opts ResourceOptions: Bag of options to control resource's behavior.

ctx Context: Context object for the current deployment.
name string: The unique name of the resource.
args RowAccessPolicyGrantArgs: The arguments to resource properties.
opts ResourceOption: Bag of options to control resource's behavior.

name string: The unique name of the resource.
args RowAccessPolicyGrantArgs: The arguments to resource properties.
opts CustomResourceOptions: Bag of options to control resource's behavior.

name String: The unique name of the resource.
args RowAccessPolicyGrantArgs: The arguments to resource properties.
options CustomResourceOptions: Bag of options to control resource's behavior.

Constructor example

The following reference example uses placeholder values for all input properties.

var rowAccessPolicyGrantResource = new Snowflake.RowAccessPolicyGrant("rowAccessPolicyGrantResource", new()
{
    DatabaseName = "string",
    RowAccessPolicyName = "string",
    SchemaName = "string",
    EnableMultipleGrants = false,
    Privilege = "string",
    RevertOwnershipToRoleName = "string",
    Roles = new[]
    {
        "string",
    },
    WithGrantOption = false,
});

example, err := snowflake.NewRowAccessPolicyGrant(ctx, "rowAccessPolicyGrantResource", &snowflake.RowAccessPolicyGrantArgs{
	DatabaseName:              pulumi.String("string"),
	RowAccessPolicyName:       pulumi.String("string"),
	SchemaName:                pulumi.String("string"),
	EnableMultipleGrants:      pulumi.Bool(false),
	Privilege:                 pulumi.String("string"),
	RevertOwnershipToRoleName: pulumi.String("string"),
	Roles: pulumi.StringArray{
		pulumi.String("string"),
	},
	WithGrantOption: pulumi.Bool(false),
})

var rowAccessPolicyGrantResource = new RowAccessPolicyGrant("rowAccessPolicyGrantResource", RowAccessPolicyGrantArgs.builder()
    .databaseName("string")
    .rowAccessPolicyName("string")
    .schemaName("string")
    .enableMultipleGrants(false)
    .privilege("string")
    .revertOwnershipToRoleName("string")
    .roles("string")
    .withGrantOption(false)
    .build());

row_access_policy_grant_resource = snowflake.RowAccessPolicyGrant("rowAccessPolicyGrantResource",
    database_name="string",
    row_access_policy_name="string",
    schema_name="string",
    enable_multiple_grants=False,
    privilege="string",
    revert_ownership_to_role_name="string",
    roles=["string"],
    with_grant_option=False)

const rowAccessPolicyGrantResource = new snowflake.RowAccessPolicyGrant("rowAccessPolicyGrantResource", {
    databaseName: "string",
    rowAccessPolicyName: "string",
    schemaName: "string",
    enableMultipleGrants: false,
    privilege: "string",
    revertOwnershipToRoleName: "string",
    roles: ["string"],
    withGrantOption: false,
});

type: snowflake:RowAccessPolicyGrant
properties:
    databaseName: string
    enableMultipleGrants: false
    privilege: string
    revertOwnershipToRoleName: string
    roles:
        - string
    rowAccessPolicyName: string
    schemaName: string
    withGrantOption: false

RowAccessPolicyGrant Resource Properties

To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

Inputs

The RowAccessPolicyGrant resource accepts the following input properties:

DatabaseName string: The name of the database containing the row access policy on which to grant privileges.
RowAccessPolicyName string: The name of the row access policy on which to grant privileges immediately.
SchemaName string: The name of the schema containing the row access policy on which to grant privileges.
EnableMultipleGrants bool
Privilege string: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
RevertOwnershipToRoleName string: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
Roles List<string>: Grants privilege to these roles.
WithGrantOption bool: When this is set to true, allows the recipient role to grant the privileges to other roles.

DatabaseName string: The name of the database containing the row access policy on which to grant privileges.
RowAccessPolicyName string: The name of the row access policy on which to grant privileges immediately.
SchemaName string: The name of the schema containing the row access policy on which to grant privileges.
EnableMultipleGrants bool
Privilege string: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
RevertOwnershipToRoleName string: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
Roles []string: Grants privilege to these roles.
WithGrantOption bool: When this is set to true, allows the recipient role to grant the privileges to other roles.

databaseName String: The name of the database containing the row access policy on which to grant privileges.
rowAccessPolicyName String: The name of the row access policy on which to grant privileges immediately.
schemaName String: The name of the schema containing the row access policy on which to grant privileges.
enableMultipleGrants Boolean
privilege String: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revertOwnershipToRoleName String: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles List<String>: Grants privilege to these roles.
withGrantOption Boolean: When this is set to true, allows the recipient role to grant the privileges to other roles.

databaseName string: The name of the database containing the row access policy on which to grant privileges.
rowAccessPolicyName string: The name of the row access policy on which to grant privileges immediately.
schemaName string: The name of the schema containing the row access policy on which to grant privileges.
enableMultipleGrants boolean
privilege string: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revertOwnershipToRoleName string: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles string[]: Grants privilege to these roles.
withGrantOption boolean: When this is set to true, allows the recipient role to grant the privileges to other roles.

database_name str: The name of the database containing the row access policy on which to grant privileges.
row_access_policy_name str: The name of the row access policy on which to grant privileges immediately.
schema_name str: The name of the schema containing the row access policy on which to grant privileges.
enable_multiple_grants bool
privilege str: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revert_ownership_to_role_name str: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles Sequence[str]: Grants privilege to these roles.
with_grant_option bool: When this is set to true, allows the recipient role to grant the privileges to other roles.

databaseName String: The name of the database containing the row access policy on which to grant privileges.
rowAccessPolicyName String: The name of the row access policy on which to grant privileges immediately.
schemaName String: The name of the schema containing the row access policy on which to grant privileges.
enableMultipleGrants Boolean
privilege String: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revertOwnershipToRoleName String: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles List<String>: Grants privilege to these roles.
withGrantOption Boolean: When this is set to true, allows the recipient role to grant the privileges to other roles.

Outputs

All input properties are implicitly available as output properties. Additionally, the RowAccessPolicyGrant resource produces the following output properties:

Id string: The provider-assigned unique ID for this managed resource.

Id string: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

id string: The provider-assigned unique ID for this managed resource.

id str: The provider-assigned unique ID for this managed resource.

id String: The provider-assigned unique ID for this managed resource.

Look up Existing RowAccessPolicyGrant Resource

Get an existing RowAccessPolicyGrant resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

public static get(name: string, id: Input<ID>, state?: RowAccessPolicyGrantState, opts?: CustomResourceOptions): RowAccessPolicyGrant

@staticmethod
def get(resource_name: str,
        id: str,
        opts: Optional[ResourceOptions] = None,
        database_name: Optional[str] = None,
        enable_multiple_grants: Optional[bool] = None,
        privilege: Optional[str] = None,
        revert_ownership_to_role_name: Optional[str] = None,
        roles: Optional[Sequence[str]] = None,
        row_access_policy_name: Optional[str] = None,
        schema_name: Optional[str] = None,
        with_grant_option: Optional[bool] = None) -> RowAccessPolicyGrant

func GetRowAccessPolicyGrant(ctx *Context, name string, id IDInput, state *RowAccessPolicyGrantState, opts ...ResourceOption) (*RowAccessPolicyGrant, error)

public static RowAccessPolicyGrant Get(string name, Input<string> id, RowAccessPolicyGrantState? state, CustomResourceOptions? opts = null)

public static RowAccessPolicyGrant get(String name, Output<String> id, RowAccessPolicyGrantState state, CustomResourceOptions options)

Resource lookup is not supported in YAML

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

resource_name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

name: The unique name of the resulting resource.
id: The unique provider ID of the resource to lookup.
state: Any extra arguments used during the lookup.
opts: A bag of options that control this resource's behavior.

The following state arguments are supported:

DatabaseName string: The name of the database containing the row access policy on which to grant privileges.
EnableMultipleGrants bool
Privilege string: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
RevertOwnershipToRoleName string: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
Roles List<string>: Grants privilege to these roles.
RowAccessPolicyName string: The name of the row access policy on which to grant privileges immediately.
SchemaName string: The name of the schema containing the row access policy on which to grant privileges.
WithGrantOption bool: When this is set to true, allows the recipient role to grant the privileges to other roles.

DatabaseName string: The name of the database containing the row access policy on which to grant privileges.
EnableMultipleGrants bool
Privilege string: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
RevertOwnershipToRoleName string: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
Roles []string: Grants privilege to these roles.
RowAccessPolicyName string: The name of the row access policy on which to grant privileges immediately.
SchemaName string: The name of the schema containing the row access policy on which to grant privileges.
WithGrantOption bool: When this is set to true, allows the recipient role to grant the privileges to other roles.

databaseName String: The name of the database containing the row access policy on which to grant privileges.
enableMultipleGrants Boolean
privilege String: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revertOwnershipToRoleName String: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles List<String>: Grants privilege to these roles.
rowAccessPolicyName String: The name of the row access policy on which to grant privileges immediately.
schemaName String: The name of the schema containing the row access policy on which to grant privileges.
withGrantOption Boolean: When this is set to true, allows the recipient role to grant the privileges to other roles.

databaseName string: The name of the database containing the row access policy on which to grant privileges.
enableMultipleGrants boolean
privilege string: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revertOwnershipToRoleName string: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles string[]: Grants privilege to these roles.
rowAccessPolicyName string: The name of the row access policy on which to grant privileges immediately.
schemaName string: The name of the schema containing the row access policy on which to grant privileges.
withGrantOption boolean: When this is set to true, allows the recipient role to grant the privileges to other roles.

database_name str: The name of the database containing the row access policy on which to grant privileges.
enable_multiple_grants bool
privilege str: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revert_ownership_to_role_name str: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles Sequence[str]: Grants privilege to these roles.
row_access_policy_name str: The name of the row access policy on which to grant privileges immediately.
schema_name str: The name of the schema containing the row access policy on which to grant privileges.
with_grant_option bool: When this is set to true, allows the recipient role to grant the privileges to other roles.

databaseName String: The name of the database containing the row access policy on which to grant privileges.
enableMultipleGrants Boolean
privilege String: The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
revertOwnershipToRoleName String: The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
roles List<String>: Grants privilege to these roles.
rowAccessPolicyName String: The name of the row access policy on which to grant privileges immediately.
schemaName String: The name of the schema containing the row access policy on which to grant privileges.
withGrantOption Boolean: When this is set to true, allows the recipient role to grant the privileges to other roles.

Import

$ pulumi import snowflake:index/rowAccessPolicyGrant:RowAccessPolicyGrant example "MY_DATABASE|MY_SCHEMA|MY_ROW_ACCESS_POLICY_NAME|SELECT|false|role1,role2"

To learn more about importing existing cloud resources, see Importing resources.

Package Details

Repository: Snowflake pulumi/pulumi-snowflake
License: Apache-2.0
Notes: This Pulumi package is based on the snowflake Terraform Provider.

Snowflake v0.55.0 published on Friday, Jun 7, 2024 by Pulumi

pulumi/pulumi-snowflake

snowflake.RowAccessPolicyGrant

On this page

On this page

Example Usage

Create RowAccessPolicyGrant Resource

Constructor syntax

Parameters

Constructor example

RowAccessPolicyGrant Resource Properties

Inputs

Outputs

Look up Existing RowAccessPolicyGrant Resource

Import

Package Details

On this page

On this page