rdblue commented on code in PR #13879:
URL: https://github.com/apache/iceberg/pull/13879#discussion_r2289473856
##########
open-api/rest-catalog-open-api.yaml:
##########
@@ -3260,6 +3260,28 @@ components:
additionalProperties:
type: string
+ FineGrainedDataProtectionRules:
+ type: object
+ description: >
+ Fine-grained data protection rules for a table as result of fine
grained policy evaluation at the catalog end based on the clients access rights.
+
+ The client SHOULD use these rules to enforce fine-grained data
protection like column and row level access when reading data from the table.
+ properties:
+ projections:
+ description: >
+ This field contains a list of columns or column transforms to be
projected.
+
+ Note: That each column must have only a single projection, meaning
a column can be projected as-is or as a transformed value, but not both.
+ type: array
+ items:
+ $ref: '#/components/schemas/Term'
+ row-filter:
+ description: >
+ An expression that filters rows. Only rows for which the
expression evaluates to true should be allowed to read.
Review Comment:
I would phrase this in the opposite way: "Rows for which the filter
evaluates to false must be discarded and no information derived from the
filtered rows may be included in the query result."
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
