Grant

laktory.models.resources.databricks.Grant ¤

Bases: BaseModel, PulumiResource, TerraformResource

Databricks Grant

Authoritative for a specific principal. Updates the grants of a securable to a single principal. Other principals within the grants for the securables are preserved.

ATTRIBUTE	DESCRIPTION
`catalog`	Name of the catalog to assign the grants to TYPE: `str`
`external_location`	Name of the external location to assign the grants to TYPE: `str`
`metastore`	Name of the metastore to assign the grants to TYPE: `str`
`model`	Name of the user to assign the permission to. TYPE: `str`
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[str]`
`schema`	Name of the schema to assign the permission to.
`share`	Name of the share to assign the permission to. TYPE: `str`
`storage_credential`	Name of the storage credential to assign the permission to. TYPE: `str`
`view`	Name of the view to assign the permission to. TYPE: `str`
`volume`	Name of the volume to assign the permission to. TYPE: `str`

Examples:

from laktory import models

grants = models.resources.databricks.Grant(
    catalog="dev",
    principal="metastore-admins",
    privileges=["CREATE_SCHEMA"],
)

Each grant model allows a set of privileges to a principal and operate on a securable object. More details on privileges available here.

laktory.models.CatalogGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a catalog.

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'CREATE_FUNCTION', 'CREATE_MATERIALIZED_VIEW', 'CREATE_MODEL', 'CREATE_SCHEMA', 'CREATE_TABLE', 'CREATE_VOLUME', 'EXECUTE', 'MODIFY', 'READ_VOLUME', 'SELECT', 'USE_CATALOG', 'USE_SCHEMA', 'WRITE_VOLUME']]`

References

privilege types

laktory.models.ConnectionGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a connection

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'CREATE_FOREIGN_CATALOG', 'USE_CONNECTION']]`

References

privilege types

laktory.models.ExternalLocationGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on an external location

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'CREATE_EXTERNAL_TABLE', 'CREATE_EXTERNAL_VOLUME', 'READ_FILES', 'WRITE_FILES', 'CREATE_MANAGED_STORAGE']]`

References

privilege types

laktory.models.FunctionGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a function

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'EXECUTE']]`

References

privilege types

laktory.models.MetastoreGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a metastore

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['CREATE_CATALOG', 'CREATE_CONNECTION', 'CREATE_EXTERNAL_LOCATION', 'CREATE_PROVIDER', 'CREATE_RECIPIENT', 'CREATE_SHARE', 'CREATE_STORAGE_CREDENTIAL', 'LOCATION', 'MANAGE_ALLOWLIST', 'SET_SHARE_PERMISSION', 'USE_MARKETPLACE_ASSETS', 'USE_PROVIDER', 'USE_RECIPIENT', 'USE_SHARE']]`

References

privilege types

laktory.models.RegisteredModelGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a registered model

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'EXECUTE']]`

References

privilege types

laktory.models.SchemaGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a schema

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'CREATE_FUNCTION', 'CREATE_MATERIALIZED_VIEW', 'CREATE_MODEL', 'CREATE_TABLE', 'CREATE_VOLUME', 'EXECUTE', 'MODIFY', 'READ_VOLUME', 'SELECT', 'USE_SCHEMA', 'WRITE_VOLUME']]`

References

privilege types

laktory.models.ShareGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a share

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['SELECT']]`

References

privilege types

laktory.models.StorageCredentialGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a storage credential

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL PRIVILEGES', 'CREATE_EXTERNAL_LOCATION', 'CREATE_EXTERNAL_TABLE', 'READ_FILES', 'WRITE_FILES']]`

References

privilege types

laktory.models.TableGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a table

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'SELECT', 'MODIFY']]`

References

privilege types

laktory.models.ViewGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a view

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'SELECT']]`

References

privilege types

laktory.models.VolumeGrant ¤

Bases: BaseModel

Privileges granted to a principal and operating on a volume

ATTRIBUTE	DESCRIPTION
`principal`	User, group or service principal name TYPE: `str`
`privileges`	List of allowed privileges TYPE: `list[Literal['ALL_PRIVILEGES', 'READ_VOLUME', 'WRITE_VOLUME']]`

References

privilege types