https://community.databricks.com/t5/data-engineering/insufficient-permission-when-writing-to-aws-redshift/m-p/53773#M29879 <P>I'm trying to write a table in AWS Redshift using the following code:<BR /><BR /></P><DIV><DIV><SPAN>try</SPAN><SPAN>:</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; (df_source.write</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>format</SPAN><SPAN>(</SPAN><SPAN>"redshift"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"dbtable"</SPAN><SPAN>, </SPAN><SPAN>f</SPAN><SPAN>"</SPAN><SPAN>{</SPAN><SPAN>redshift_schema</SPAN><SPAN>}</SPAN><SPAN>.</SPAN><SPAN>{</SPAN><SPAN>table_name</SPAN><SPAN>}</SPAN><SPAN>"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"tempdir"</SPAN><SPAN>, tempdir)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"url"</SPAN><SPAN>, url)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"user"</SPAN><SPAN>, user)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"password"</SPAN><SPAN>, password)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"forward_spark_s3_credentials"</SPAN><SPAN>, </SPAN><SPAN>True</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"tempformat"</SPAN><SPAN>, </SPAN><SPAN>"CSV GZIP"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>mode</SPAN><SPAN>(</SPAN><SPAN>"overwrite"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>save</SPAN><SPAN>())</SPAN></DIV><DIV><SPAN>except</SPAN> <SPAN>Exception</SPAN> <SPAN>as</SPAN><SPAN> e:</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; </SPAN><SPAN>raise</SPAN> <SPAN>Exception</SPAN><SPAN>(</SPAN><SPAN>f</SPAN><SPAN>'ERRO: </SPAN><SPAN>{</SPAN><SPAN>str</SPAN><SPAN>(e)</SPAN><SPAN>}</SPAN><SPAN>'</SPAN><SPAN><SPAN>)<BR /><BR />However I'm getting the following error:<BR /><BR /><SPAN class="">"Exception</SPAN>: ERRO: An error occurred while calling o450.save. : org.apache.spark.SparkSecurityException: [INSUFFICIENT_PERMISSIONS] Insufficient privileges: User does not have permission SELECT on any file."<BR /><BR />I've seen a solution to have an admin run a sql command like&nbsp;</SPAN></SPAN><PRE><SPAN class="">GRANT</SPAN> <SPAN class="">SELECT</SPAN> <SPAN class="">ON</SPAN> <SPAN class="">ANY</SPAN> <SPAN class="">FILE</SPAN> <SPAN class="">TO</SPAN> <SPAN class="">`user1`</SPAN></PRE><SPAN>But it's not working and I don't think I'd like to give this grant to every user/group. So, why is this happening and how can I solve it in a more proper manner? I also have unity catalog enabled. Thank you!</SPAN></DIV></DIV> Fri, 24 Nov 2023 19:45:11 GMT eric-cordeiro 2023-11-24T19:45:11Z https://community.databricks.com/t5/data-engineering/insufficient-permission-when-writing-to-aws-redshift/m-p/53773#M29879 <P>I'm trying to write a table in AWS Redshift using the following code:<BR /><BR /></P><DIV><DIV><SPAN>try</SPAN><SPAN>:</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; (df_source.write</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>format</SPAN><SPAN>(</SPAN><SPAN>"redshift"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"dbtable"</SPAN><SPAN>, </SPAN><SPAN>f</SPAN><SPAN>"</SPAN><SPAN>{</SPAN><SPAN>redshift_schema</SPAN><SPAN>}</SPAN><SPAN>.</SPAN><SPAN>{</SPAN><SPAN>table_name</SPAN><SPAN>}</SPAN><SPAN>"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"tempdir"</SPAN><SPAN>, tempdir)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"url"</SPAN><SPAN>, url)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"user"</SPAN><SPAN>, user)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"password"</SPAN><SPAN>, password)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"forward_spark_s3_credentials"</SPAN><SPAN>, </SPAN><SPAN>True</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>option</SPAN><SPAN>(</SPAN><SPAN>"tempformat"</SPAN><SPAN>, </SPAN><SPAN>"CSV GZIP"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>mode</SPAN><SPAN>(</SPAN><SPAN>"overwrite"</SPAN><SPAN>)</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; &nbsp; &nbsp; .</SPAN><SPAN>save</SPAN><SPAN>())</SPAN></DIV><DIV><SPAN>except</SPAN> <SPAN>Exception</SPAN> <SPAN>as</SPAN><SPAN> e:</SPAN></DIV><DIV><SPAN>&nbsp; &nbsp; </SPAN><SPAN>raise</SPAN> <SPAN>Exception</SPAN><SPAN>(</SPAN><SPAN>f</SPAN><SPAN>'ERRO: </SPAN><SPAN>{</SPAN><SPAN>str</SPAN><SPAN>(e)</SPAN><SPAN>}</SPAN><SPAN>'</SPAN><SPAN><SPAN>)<BR /><BR />However I'm getting the following error:<BR /><BR /><SPAN class="">"Exception</SPAN>: ERRO: An error occurred while calling o450.save. : org.apache.spark.SparkSecurityException: [INSUFFICIENT_PERMISSIONS] Insufficient privileges: User does not have permission SELECT on any file."<BR /><BR />I've seen a solution to have an admin run a sql command like&nbsp;</SPAN></SPAN><PRE><SPAN class="">GRANT</SPAN> <SPAN class="">SELECT</SPAN> <SPAN class="">ON</SPAN> <SPAN class="">ANY</SPAN> <SPAN class="">FILE</SPAN> <SPAN class="">TO</SPAN> <SPAN class="">`user1`</SPAN></PRE><SPAN>But it's not working and I don't think I'd like to give this grant to every user/group. So, why is this happening and how can I solve it in a more proper manner? I also have unity catalog enabled. Thank you!</SPAN></DIV></DIV> Fri, 24 Nov 2023 19:45:11 GMT https://community.databricks.com/t5/data-engineering/insufficient-permission-when-writing-to-aws-redshift/m-p/53773#M29879 eric-cordeiro 2023-11-24T19:45:11Z