1. Packages
  2. Snowflake
  3. API Docs
  4. RowAccessPolicyGrant
Snowflake v0.55.0 published on Friday, Jun 7, 2024 by Pulumi

snowflake.RowAccessPolicyGrant

Explore with Pulumi AI

snowflake logo
Snowflake v0.55.0 published on Friday, Jun 7, 2024 by Pulumi

    Deprecation This resource is deprecated and will be removed in a future major version release. Please use snowflake.GrantPrivilegesToAccountRole instead.

    Example Usage

    import * as pulumi from "@pulumi/pulumi";
    import * as snowflake from "@pulumi/snowflake";
    
    const grant = new snowflake.RowAccessPolicyGrant("grant", {
        databaseName: "database",
        schemaName: "schema",
        rowAccessPolicyName: "row_access_policy",
        privilege: "APPLY",
        roles: [
            "role1",
            "role2",
        ],
        withGrantOption: false,
    });
    
    import pulumi
    import pulumi_snowflake as snowflake
    
    grant = snowflake.RowAccessPolicyGrant("grant",
        database_name="database",
        schema_name="schema",
        row_access_policy_name="row_access_policy",
        privilege="APPLY",
        roles=[
            "role1",
            "role2",
        ],
        with_grant_option=False)
    
    package main
    
    import (
    	"github.com/pulumi/pulumi-snowflake/sdk/go/snowflake"
    	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
    )
    
    func main() {
    	pulumi.Run(func(ctx *pulumi.Context) error {
    		_, err := snowflake.NewRowAccessPolicyGrant(ctx, "grant", &snowflake.RowAccessPolicyGrantArgs{
    			DatabaseName:        pulumi.String("database"),
    			SchemaName:          pulumi.String("schema"),
    			RowAccessPolicyName: pulumi.String("row_access_policy"),
    			Privilege:           pulumi.String("APPLY"),
    			Roles: pulumi.StringArray{
    				pulumi.String("role1"),
    				pulumi.String("role2"),
    			},
    			WithGrantOption: pulumi.Bool(false),
    		})
    		if err != nil {
    			return err
    		}
    		return nil
    	})
    }
    
    using System.Collections.Generic;
    using System.Linq;
    using Pulumi;
    using Snowflake = Pulumi.Snowflake;
    
    return await Deployment.RunAsync(() => 
    {
        var grant = new Snowflake.RowAccessPolicyGrant("grant", new()
        {
            DatabaseName = "database",
            SchemaName = "schema",
            RowAccessPolicyName = "row_access_policy",
            Privilege = "APPLY",
            Roles = new[]
            {
                "role1",
                "role2",
            },
            WithGrantOption = false,
        });
    
    });
    
    package generated_program;
    
    import com.pulumi.Context;
    import com.pulumi.Pulumi;
    import com.pulumi.core.Output;
    import com.pulumi.snowflake.RowAccessPolicyGrant;
    import com.pulumi.snowflake.RowAccessPolicyGrantArgs;
    import java.util.List;
    import java.util.ArrayList;
    import java.util.Map;
    import java.io.File;
    import java.nio.file.Files;
    import java.nio.file.Paths;
    
    public class App {
        public static void main(String[] args) {
            Pulumi.run(App::stack);
        }
    
        public static void stack(Context ctx) {
            var grant = new RowAccessPolicyGrant("grant", RowAccessPolicyGrantArgs.builder()
                .databaseName("database")
                .schemaName("schema")
                .rowAccessPolicyName("row_access_policy")
                .privilege("APPLY")
                .roles(            
                    "role1",
                    "role2")
                .withGrantOption(false)
                .build());
    
        }
    }
    
    resources:
      grant:
        type: snowflake:RowAccessPolicyGrant
        properties:
          databaseName: database
          schemaName: schema
          rowAccessPolicyName: row_access_policy
          privilege: APPLY
          roles:
            - role1
            - role2
          withGrantOption: false
    

    Create RowAccessPolicyGrant Resource

    Resources are created with functions called constructors. To learn more about declaring and configuring resources, see Resources.

    Constructor syntax

    new RowAccessPolicyGrant(name: string, args: RowAccessPolicyGrantArgs, opts?: CustomResourceOptions);
    @overload
    def RowAccessPolicyGrant(resource_name: str,
                             args: RowAccessPolicyGrantArgs,
                             opts: Optional[ResourceOptions] = None)
    
    @overload
    def RowAccessPolicyGrant(resource_name: str,
                             opts: Optional[ResourceOptions] = None,
                             database_name: Optional[str] = None,
                             row_access_policy_name: Optional[str] = None,
                             schema_name: Optional[str] = None,
                             enable_multiple_grants: Optional[bool] = None,
                             privilege: Optional[str] = None,
                             revert_ownership_to_role_name: Optional[str] = None,
                             roles: Optional[Sequence[str]] = None,
                             with_grant_option: Optional[bool] = None)
    func NewRowAccessPolicyGrant(ctx *Context, name string, args RowAccessPolicyGrantArgs, opts ...ResourceOption) (*RowAccessPolicyGrant, error)
    public RowAccessPolicyGrant(string name, RowAccessPolicyGrantArgs args, CustomResourceOptions? opts = null)
    public RowAccessPolicyGrant(String name, RowAccessPolicyGrantArgs args)
    public RowAccessPolicyGrant(String name, RowAccessPolicyGrantArgs args, CustomResourceOptions options)
    
    type: snowflake:RowAccessPolicyGrant
    properties: # The arguments to resource properties.
    options: # Bag of options to control resource's behavior.
    
    

    Parameters

    name string
    The unique name of the resource.
    args RowAccessPolicyGrantArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    resource_name str
    The unique name of the resource.
    args RowAccessPolicyGrantArgs
    The arguments to resource properties.
    opts ResourceOptions
    Bag of options to control resource's behavior.
    ctx Context
    Context object for the current deployment.
    name string
    The unique name of the resource.
    args RowAccessPolicyGrantArgs
    The arguments to resource properties.
    opts ResourceOption
    Bag of options to control resource's behavior.
    name string
    The unique name of the resource.
    args RowAccessPolicyGrantArgs
    The arguments to resource properties.
    opts CustomResourceOptions
    Bag of options to control resource's behavior.
    name String
    The unique name of the resource.
    args RowAccessPolicyGrantArgs
    The arguments to resource properties.
    options CustomResourceOptions
    Bag of options to control resource's behavior.

    Constructor example

    The following reference example uses placeholder values for all input properties.

    var rowAccessPolicyGrantResource = new Snowflake.RowAccessPolicyGrant("rowAccessPolicyGrantResource", new()
    {
        DatabaseName = "string",
        RowAccessPolicyName = "string",
        SchemaName = "string",
        EnableMultipleGrants = false,
        Privilege = "string",
        RevertOwnershipToRoleName = "string",
        Roles = new[]
        {
            "string",
        },
        WithGrantOption = false,
    });
    
    example, err := snowflake.NewRowAccessPolicyGrant(ctx, "rowAccessPolicyGrantResource", &snowflake.RowAccessPolicyGrantArgs{
    	DatabaseName:              pulumi.String("string"),
    	RowAccessPolicyName:       pulumi.String("string"),
    	SchemaName:                pulumi.String("string"),
    	EnableMultipleGrants:      pulumi.Bool(false),
    	Privilege:                 pulumi.String("string"),
    	RevertOwnershipToRoleName: pulumi.String("string"),
    	Roles: pulumi.StringArray{
    		pulumi.String("string"),
    	},
    	WithGrantOption: pulumi.Bool(false),
    })
    
    var rowAccessPolicyGrantResource = new RowAccessPolicyGrant("rowAccessPolicyGrantResource", RowAccessPolicyGrantArgs.builder()
        .databaseName("string")
        .rowAccessPolicyName("string")
        .schemaName("string")
        .enableMultipleGrants(false)
        .privilege("string")
        .revertOwnershipToRoleName("string")
        .roles("string")
        .withGrantOption(false)
        .build());
    
    row_access_policy_grant_resource = snowflake.RowAccessPolicyGrant("rowAccessPolicyGrantResource",
        database_name="string",
        row_access_policy_name="string",
        schema_name="string",
        enable_multiple_grants=False,
        privilege="string",
        revert_ownership_to_role_name="string",
        roles=["string"],
        with_grant_option=False)
    
    const rowAccessPolicyGrantResource = new snowflake.RowAccessPolicyGrant("rowAccessPolicyGrantResource", {
        databaseName: "string",
        rowAccessPolicyName: "string",
        schemaName: "string",
        enableMultipleGrants: false,
        privilege: "string",
        revertOwnershipToRoleName: "string",
        roles: ["string"],
        withGrantOption: false,
    });
    
    type: snowflake:RowAccessPolicyGrant
    properties:
        databaseName: string
        enableMultipleGrants: false
        privilege: string
        revertOwnershipToRoleName: string
        roles:
            - string
        rowAccessPolicyName: string
        schemaName: string
        withGrantOption: false
    

    RowAccessPolicyGrant Resource Properties

    To learn more about resource properties and how to use them, see Inputs and Outputs in the Architecture and Concepts docs.

    Inputs

    The RowAccessPolicyGrant resource accepts the following input properties:

    DatabaseName string
    The name of the database containing the row access policy on which to grant privileges.
    RowAccessPolicyName string
    The name of the row access policy on which to grant privileges immediately.
    SchemaName string
    The name of the schema containing the row access policy on which to grant privileges.
    EnableMultipleGrants bool
    Privilege string
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    RevertOwnershipToRoleName string
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    Roles List<string>
    Grants privilege to these roles.
    WithGrantOption bool
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    DatabaseName string
    The name of the database containing the row access policy on which to grant privileges.
    RowAccessPolicyName string
    The name of the row access policy on which to grant privileges immediately.
    SchemaName string
    The name of the schema containing the row access policy on which to grant privileges.
    EnableMultipleGrants bool
    Privilege string
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    RevertOwnershipToRoleName string
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    Roles []string
    Grants privilege to these roles.
    WithGrantOption bool
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    databaseName String
    The name of the database containing the row access policy on which to grant privileges.
    rowAccessPolicyName String
    The name of the row access policy on which to grant privileges immediately.
    schemaName String
    The name of the schema containing the row access policy on which to grant privileges.
    enableMultipleGrants Boolean
    privilege String
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revertOwnershipToRoleName String
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles List<String>
    Grants privilege to these roles.
    withGrantOption Boolean
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    databaseName string
    The name of the database containing the row access policy on which to grant privileges.
    rowAccessPolicyName string
    The name of the row access policy on which to grant privileges immediately.
    schemaName string
    The name of the schema containing the row access policy on which to grant privileges.
    enableMultipleGrants boolean
    privilege string
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revertOwnershipToRoleName string
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles string[]
    Grants privilege to these roles.
    withGrantOption boolean
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    database_name str
    The name of the database containing the row access policy on which to grant privileges.
    row_access_policy_name str
    The name of the row access policy on which to grant privileges immediately.
    schema_name str
    The name of the schema containing the row access policy on which to grant privileges.
    enable_multiple_grants bool
    privilege str
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revert_ownership_to_role_name str
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles Sequence[str]
    Grants privilege to these roles.
    with_grant_option bool
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    databaseName String
    The name of the database containing the row access policy on which to grant privileges.
    rowAccessPolicyName String
    The name of the row access policy on which to grant privileges immediately.
    schemaName String
    The name of the schema containing the row access policy on which to grant privileges.
    enableMultipleGrants Boolean
    privilege String
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revertOwnershipToRoleName String
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles List<String>
    Grants privilege to these roles.
    withGrantOption Boolean
    When this is set to true, allows the recipient role to grant the privileges to other roles.

    Outputs

    All input properties are implicitly available as output properties. Additionally, the RowAccessPolicyGrant resource produces the following output properties:

    Id string
    The provider-assigned unique ID for this managed resource.
    Id string
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.
    id string
    The provider-assigned unique ID for this managed resource.
    id str
    The provider-assigned unique ID for this managed resource.
    id String
    The provider-assigned unique ID for this managed resource.

    Look up Existing RowAccessPolicyGrant Resource

    Get an existing RowAccessPolicyGrant resource’s state with the given name, ID, and optional extra properties used to qualify the lookup.

    public static get(name: string, id: Input<ID>, state?: RowAccessPolicyGrantState, opts?: CustomResourceOptions): RowAccessPolicyGrant
    @staticmethod
    def get(resource_name: str,
            id: str,
            opts: Optional[ResourceOptions] = None,
            database_name: Optional[str] = None,
            enable_multiple_grants: Optional[bool] = None,
            privilege: Optional[str] = None,
            revert_ownership_to_role_name: Optional[str] = None,
            roles: Optional[Sequence[str]] = None,
            row_access_policy_name: Optional[str] = None,
            schema_name: Optional[str] = None,
            with_grant_option: Optional[bool] = None) -> RowAccessPolicyGrant
    func GetRowAccessPolicyGrant(ctx *Context, name string, id IDInput, state *RowAccessPolicyGrantState, opts ...ResourceOption) (*RowAccessPolicyGrant, error)
    public static RowAccessPolicyGrant Get(string name, Input<string> id, RowAccessPolicyGrantState? state, CustomResourceOptions? opts = null)
    public static RowAccessPolicyGrant get(String name, Output<String> id, RowAccessPolicyGrantState state, CustomResourceOptions options)
    Resource lookup is not supported in YAML
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    resource_name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    name
    The unique name of the resulting resource.
    id
    The unique provider ID of the resource to lookup.
    state
    Any extra arguments used during the lookup.
    opts
    A bag of options that control this resource's behavior.
    The following state arguments are supported:
    DatabaseName string
    The name of the database containing the row access policy on which to grant privileges.
    EnableMultipleGrants bool
    Privilege string
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    RevertOwnershipToRoleName string
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    Roles List<string>
    Grants privilege to these roles.
    RowAccessPolicyName string
    The name of the row access policy on which to grant privileges immediately.
    SchemaName string
    The name of the schema containing the row access policy on which to grant privileges.
    WithGrantOption bool
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    DatabaseName string
    The name of the database containing the row access policy on which to grant privileges.
    EnableMultipleGrants bool
    Privilege string
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    RevertOwnershipToRoleName string
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    Roles []string
    Grants privilege to these roles.
    RowAccessPolicyName string
    The name of the row access policy on which to grant privileges immediately.
    SchemaName string
    The name of the schema containing the row access policy on which to grant privileges.
    WithGrantOption bool
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    databaseName String
    The name of the database containing the row access policy on which to grant privileges.
    enableMultipleGrants Boolean
    privilege String
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revertOwnershipToRoleName String
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles List<String>
    Grants privilege to these roles.
    rowAccessPolicyName String
    The name of the row access policy on which to grant privileges immediately.
    schemaName String
    The name of the schema containing the row access policy on which to grant privileges.
    withGrantOption Boolean
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    databaseName string
    The name of the database containing the row access policy on which to grant privileges.
    enableMultipleGrants boolean
    privilege string
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revertOwnershipToRoleName string
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles string[]
    Grants privilege to these roles.
    rowAccessPolicyName string
    The name of the row access policy on which to grant privileges immediately.
    schemaName string
    The name of the schema containing the row access policy on which to grant privileges.
    withGrantOption boolean
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    database_name str
    The name of the database containing the row access policy on which to grant privileges.
    enable_multiple_grants bool
    privilege str
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revert_ownership_to_role_name str
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles Sequence[str]
    Grants privilege to these roles.
    row_access_policy_name str
    The name of the row access policy on which to grant privileges immediately.
    schema_name str
    The name of the schema containing the row access policy on which to grant privileges.
    with_grant_option bool
    When this is set to true, allows the recipient role to grant the privileges to other roles.
    databaseName String
    The name of the database containing the row access policy on which to grant privileges.
    enableMultipleGrants Boolean
    privilege String
    The privilege to grant on the row access policy. To grant all privileges, use the value ALL PRIVILEGES
    revertOwnershipToRoleName String
    The name of the role to revert ownership to on destroy. Has no effect unless privilege is set to OWNERSHIP
    roles List<String>
    Grants privilege to these roles.
    rowAccessPolicyName String
    The name of the row access policy on which to grant privileges immediately.
    schemaName String
    The name of the schema containing the row access policy on which to grant privileges.
    withGrantOption Boolean
    When this is set to true, allows the recipient role to grant the privileges to other roles.

    Import

    format is database_name|schema_name|row_access_policy_name|privilege|with_grant_option|roles

    $ pulumi import snowflake:index/rowAccessPolicyGrant:RowAccessPolicyGrant example "MY_DATABASE|MY_SCHEMA|MY_ROW_ACCESS_POLICY_NAME|SELECT|false|role1,role2"
    

    To learn more about importing existing cloud resources, see Importing resources.

    Package Details

    Repository
    Snowflake pulumi/pulumi-snowflake
    License
    Apache-2.0
    Notes
    This Pulumi package is based on the snowflake Terraform Provider.
    snowflake logo
    Snowflake v0.55.0 published on Friday, Jun 7, 2024 by Pulumi