Skip to content

Clarify that table procedures are not supported by FBAC #24971

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
mosabua merged 1 commit into from
Feb 12, 2025
Merged

Clarify that table procedures are not supported by FBAC #24971

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 11 additions & 1 deletion docs/src/main/sphinx/security/file-system-access-control.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -432,7 +432,8 @@ any catalog, and allows all users to create, drop, and execute functions (includ
(system-file-procedure-rules)=
#### Procedure rules

These rules control the ability of a user to execute procedures.
These rules control the ability of a user to execute procedures using the
[CALL](/sql/call) statement.

Procedures are used for administrative operations on a specific catalog, such as
registering external tables or flushing the connector's cache. Available
Expand Down Expand Up @@ -490,6 +491,15 @@ connector](/connector/delta-lake). It allows all users to execute the
}
```

(system-file-table-procedure-rules)=
#### Table procedure rules

Table procedures are executed using the
[ALTER TABLE ... EXECUTE](alter-table-execute) syntax.

File-based access control does not support privileges for table procedures and
therefore all are effectively allowed.

(verify-rules)=
#### Verify configuration

Expand Down