permissions
Creates, updates, deletes, gets or lists a permissions resource.
Overview
| Name | permissions |
| Type | Resource |
| Id | databricks_workspace.iam.permissions |
Fields
The following fields are returned by SELECT queries:
- get
| Name | Datatype | Description |
|---|---|---|
object_id | string | |
access_control_list | array | |
object_type | string |
Methods
The following methods are available for this resource:
| Name | Accessible by | Required Params | Optional Params | Description |
|---|---|---|---|---|
get | select | deployment_name | Gets the permissions of an object. Objects can inherit permissions from their parent objects or root object. | |
update | update | deployment_name | Updates the permissions on an object. Objects can inherit permissions from their parent objects or root object. | |
set | replace | deployment_name | Sets permissions on an object, replacing existing permissions if they exist. Deletes all direct permissions if none are specified. Objects can inherit permissions from their parent objects or root object. |
Parameters
Parameters can be passed in the WHERE clause of a query. Check the Methods section to see which parameters are required or optional for each operation.
| Name | Datatype | Description |
|---|---|---|
deployment_name | string | The Databricks Workspace Deployment Name (default: dbc-abcd0123-a1bc) |
SELECT examples
- get
Gets the permissions of an object. Objects can inherit permissions from their parent objects or root object.
SELECT
object_id,
access_control_list,
object_type
FROM databricks_workspace.iam.permissions
WHERE deployment_name = '{{ deployment_name }}' -- required;
UPDATE examples
- update
Updates the permissions on an object. Objects can inherit permissions from their parent objects or root object.
UPDATE databricks_workspace.iam.permissions
SET
data__access_control_list = '{{ access_control_list }}'
WHERE
deployment_name = '{{ deployment_name }}' --required
RETURNING
object_id,
access_control_list,
object_type;
REPLACE examples
- set
Sets permissions on an object, replacing existing permissions if they exist. Deletes all direct permissions if none are specified. Objects can inherit permissions from their parent objects or root object.
REPLACE databricks_workspace.iam.permissions
SET
data__access_control_list = '{{ access_control_list }}'
WHERE
deployment_name = '{{ deployment_name }}' --required
RETURNING
object_id,
access_control_list,
object_type;