Preview Feature — Open
Available to all accounts.
Lists the privileges granted to an application.
Syntax¶SHOW PRIVILEGES IN APPLICATION <name>
Copy
Parameters¶
name
Specifies the name of the application.
Specifies the privileges granted to an application.
Column
Description
privilege
The name of the privilege as specified in the manifest file.
description
A description of the privilege, which is specified in the manifest file. For details, refer to Access control privileges.
is_granted
Specifies if the consumer has granted the privilege.
is_grantable
Specifies if the user running the command has an activated role that can grant this privilege
Usage notes¶The command doesn’t require a running warehouse to execute.
The command only returns objects for which the current user’s current role has been granted at least one access privilege.
The MANAGE GRANTS access privilege implicitly allows its holder to see every object in the account. By default, only the account administrator (users with the ACCOUNTADMIN role) and security administrator (users with the SECURITYADMIN role) have the MANAGE GRANTS privilege.
To post-process the output of this command, you can use the pipe operator (->>) or the RESULT_SCAN function. Both constructs treat the output as a result set that you can query.
The output column names for this command are generated in lowercase. If you consume a result set from this command with the pipe operator or the RESULT_SCAN function, use double-quoted identifiers for the column names in the query to ensure that they match the column names in the output that was scanned. For example, if the name of an output column is type, then specify "type" for the identifier.
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4