gfakbar20 commented on code in PR #1374: URL: https://github.com/apache/polaris/pull/1374#discussion_r2046832003
########## site/content/in-dev/unreleased/access-control.md: ########## @@ -124,6 +124,19 @@ To grant the full set of privileges (drop, list, read, write, etc.) on an object | TABLE_WRITE_DATA | Enables writing data to the table by receiving short-lived read+write storage credentials from the catalog. | | TABLE_FULL_METADATA | Grants all table privileges, except TABLE_READ_DATA and TABLE_WRITE_DATA, which need to be granted individually. | +### Generic table privileges + +| Privilege | Description | +| --------- | ----------- | +| TABLE_CREATE | Enables registering a generic table with the catalog. | +| TABLE_DROP | Enables dropping a generic table from the catalog. | +| TABLE_LIST | Enables listing any generic tables in the catalog. | +| TABLE_READ_PROPERTIES | Enables reading properties of the generic table. | +| TABLE_WRITE_PROPERTIES | Enables configuring properties for the generic table. | +| TABLE_READ_DATA | Enables reading data from the generic table by receiving short-lived read-only storage credentials from the catalog. | +| TABLE_WRITE_DATA | Enables writing data to the generic table by receiving short-lived read+write storage credentials from the catalog. | +| TABLE_FULL_METADATA | Grants all generic table privileges, except TABLE_READ_DATA and TABLE_WRITE_DATA, which need to be granted individually. | + ### View privileges Review Comment: do we need to explicitly state in the description that each table privilege also works for the generic table or we can leave it as it is? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
