cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 
Help
Data Engineering
Join discussions on data engineering best practices, architectures, and optimization strategies within the Databricks Community. Exchange insights and solutions with fellow data engineers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forย 
Search instead forย 
Did you mean:ย 

Authorised views in databricks?

Nick_Hughes
New Contributor III

โ€Ž02-22-2023 06:22 AM

In GCP you can give a user access to a view, and then the view itself access to the underlying object, meaning you don't have to give end users access to the tables themselves.

Is there a similar way of managing these permissions in databricks? The views would be in a different database to the underlying objects also.

Labels:
0 Kudos
2 REPLIES 2

Nick_Hughes
New Contributor III
In response to Retired_mod

โ€Ž02-26-2023 11:57 PM

Hi. That isn't quite what my question was. I'm asking if I have to give users access to the tbles the view selects from too, or, if like in GCP, you can give the VIEW itself permission to the underlying objects, and then only give the user access to the view itself.

Anonymous
Not applicable
In response to Nick_Hughes

โ€Ž04-24-2023 09:07 PM

@Nick Hughesโ€‹ :

In Databricks, when you grant access to a view, it doesn't automatically grant access to the underlying tables or views. This means that you would need to explicitly grant access to the underlying tables or views in addition to granting access to the view itself.

One possible solution to avoid granting access to the underlying tables or views is to create the view in a separate database that is not accessible to end users. You can grant access to the view to the end users, but not the database that contains the underlying tables or views. This way, the end users will only be able to access the data through the view, and not directly from the underlying tables or views.

Another option is to use Row-Level Security (RLS) to filter the data that the end users can see. With RLS, you can define policies that restrict access to data based on the user's role or some other attribute. This can help you limit the data that the end users can see, without having to create separate views or databases for each user.

0 Kudos

Connect with Databricks Users in Your Area

Join a Regional User Group to connect with local Databricks users. Events will be happening in your city, and you wonโ€™t want to miss the chance to attend and share knowledge.

If there isnโ€™t a group near you, start one and help create a community that brings people together.

Request a New Group
Announcements