Skip to content

Commit a293912

Browse files
thomasyu888thomasyu888
authored
Merge pull request #21 from Sage-Bionetworks/fix-permissions-for-data-engineer-role
Update permissions for data engineer role
2 parents 4da1254 + ea433a4 commit a293912

File tree

1 file changed

+26
-0
lines changed

1 file changed

+26
-0
lines changed

admin/grants.sql

+26
Original file line numberDiff line numberDiff line change
@@ -144,15 +144,28 @@ TO ROLE MASKING_ADMIN;
144144
-- Synapse data warehouse privileges
145145
GRANT USAGE ON INTEGRATION SYNAPSE_PROD_WAREHOUSE_S3
146146
TO ROLE SYSADMIN;
147+
GRANT USAGE ON INTEGRATION SYNAPSE_PROD_WAREHOUSE_S3
148+
TO ROLE DATA_ENGINEER;
149+
150+
USE ROLE SECURITYADMIN;
147151
GRANT CREATE SCHEMA, USAGE ON DATABASE SYNAPSE_DATA_WAREHOUSE
148152
TO ROLE DATA_ENGINEER;
149153

150154
GRANT ALL PRIVILEGES ON FUTURE SCHEMAS IN DATABASE SYNAPSE_DATA_WAREHOUSE
151155
TO ROLE DATA_ENGINEER;
152156
GRANT ALL PRIVILEGES ON FUTURE TABLES IN DATABASE SYNAPSE_DATA_WAREHOUSE
153157
TO ROLE DATA_ENGINEER;
158+
GRANT ALL PRIVILEGES ON FUTURE STAGES IN DATABASE SYNAPSE_DATA_WAREHOUSE
159+
TO ROLE DATA_ENGINEER;
154160
GRANT ALL PRIVILEGES ON ALL TABLES IN DATABASE SYNAPSE_DATA_WAREHOUSE
155161
TO ROLE DATA_ENGINEER;
162+
GRANT ALL PRIVILEGES ON ALL STAGES IN DATABASE SYNAPSE_DATA_WAREHOUSE
163+
TO ROLE DATA_ENGINEER;
164+
GRANT ALL PRIVILEGES ON FUTURE STREAMS IN DATABASE SYNAPSE_DATA_WAREHOUSE
165+
TO ROLE DATA_ENGINEER;
166+
GRANT ALL PRIVILEGES ON ALL STREAMS IN DATABASE SYNAPSE_DATA_WAREHOUSE
167+
TO ROLE DATA_ENGINEER;
168+
156169
GRANT CREATE MASKING POLICY ON SCHEMA SYNAPSE_DATA_WAREHOUSE.SYNAPSE
157170
TO ROLE MASKING_ADMIN;
158171

@@ -180,6 +193,9 @@ TO ROLE DATA_ANALYTICS;
180193
USE SCHEMA SYNAPSE_DATA_WAREHOUSE_DEV.SYNAPSE_RAW;
181194
GRANT USAGE ON INTEGRATION SYNAPSE_DEV_WAREHOUSE_S3
182195
TO ROLE SYSADMIN;
196+
GRANT USAGE ON INTEGRATION SYNAPSE_DEV_WAREHOUSE_S3
197+
TO ROLE DATA_ENGINEER;
198+
183199

184200
-- GRANT CREATE MASKING POLICY ON SCHEMA synapse_data_warehouse_dev.synapse
185201
-- TO ROLE masking_admin;
@@ -189,6 +205,15 @@ GRANT ALL PRIVILEGES ON FUTURE SCHEMAS IN DATABASE SYNAPSE_DATA_WAREHOUSE_DEV
189205
TO ROLE DATA_ENGINEER;
190206
GRANT ALL PRIVILEGES ON FUTURE TABLES IN DATABASE SYNAPSE_DATA_WAREHOUSE_DEV
191207
TO ROLE DATA_ENGINEER;
208+
GRANT ALL PRIVILEGES ON FUTURE STAGES IN DATABASE SYNAPSE_DATA_WAREHOUSE_DEV
209+
TO ROLE DATA_ENGINEER;
210+
GRANT ALL PRIVILEGES ON ALL STAGES IN DATABASE SYNAPSE_DATA_WAREHOUSE_DEV
211+
TO ROLE DATA_ENGINEER;
212+
GRANT ALL PRIVILEGES ON FUTURE STREAMS IN DATABASE SYNAPSE_DATA_WAREHOUSE_DEV
213+
TO ROLE DATA_ENGINEER;
214+
GRANT ALL PRIVILEGES ON ALL STREAMS IN DATABASE SYNAPSE_DATA_WAREHOUSE_DEV
215+
TO ROLE DATA_ENGINEER;
216+
192217

193218
-- Sage database privileges
194219
GRANT ALL PRIVILEGES ON FUTURE SCHEMAS IN DATABASE SAGE
@@ -201,6 +226,7 @@ GRANT ALL PRIVILEGES ON ALL SCHEMAS IN DATABASE SAGE
201226
TO ROLE DATA_ENGINEER;
202227
GRANT ALL PRIVILEGES ON ALL TABLES IN DATABASE SAGE
203228
TO ROLE DATA_ENGINEER;
229+
204230
GRANT USAGE ON FUTURE SCHEMAS IN DATABASE SAGE
205231
TO ROLE DATA_ANALYTICS;
206232
GRANT SELECT ON FUTURE TABLES IN DATABASE SAGE

0 commit comments

Comments
 (0)