Can't able to run following queries
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2022 06:38 AM
I cannot able to run following queries
ALTER TABLE iot_events ADD ATTRIBUTE pii ON email
ALTER TABLE users ADD ATTRIBUTE pii ON phone
GRANT SELECT ON DATABASE iot_data
HAVING ATTRIBUTE NOT IN (pii)
TO product_managers
and
GRANT SELECT ON iot_events TO engineers
GRANT SELECT(date, country) ON iot_events TO marketing
Anything i am missing?
- Labels:
-
SQL Queries
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2022 06:53 AM
@Rahul Mishra I have tried above and did not work for me, but you can create view and try below queries to mask your columns or row Create views | Databricks on AWS
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2022 07:09 AM
View part also worked for me but i want to control the grant part and don't wanna create view
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2022 07:10 AM
Thing is create view is not a unique feature of unity catalog but this grant part is actually is so i wanna implement that
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-19-2022 07:20 AM
@Kaniz Fatma can anyone from data Bircks help on why attribute-based access control function is not working in unity catalog @Rahul Mishra
below commands
ALTER TABLE iot_events ADD ATTRIBUTE pii ON email
ALTER TABLE users ADD ATTRIBUTE pii ON phone
GRANT SELECT ON DATABASE iot_data
HAVING ATTRIBUTE NOT IN (pii)
TO product_managers
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-20-2022 03:47 AM
@Kaniz Fatma even the support page is not working it's redirecting me again and again to the same page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-11-2023 11:52 AM
Hi @Kaniz Fatma, I am getting below error while creating ATTRIBUTE-
%sql
CREATE ATTRIBUTE pii;
Output:
ParseException:
[PARSE_SYNTAX_ERROR] Syntax error at or near 'ATTRIBUTE'(line 1, pos 7)
== SQL ==
CREATE ATTRIBUTE pii
-------^^^
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-12-2023 07:28 AM
Hi @Kaniz Fatma , Thank you for your response.
Are you saying that "attribute" is nothing but a column name in a table?
I was under impression that attribute is like a tag which we should create before using it against a table's column(s). Sharing my reference below -
https://blog.cellenza.com/en/data/row-and-column-level-security-with-databricks/
In either way, I am confused. I have tried to execute below command as per above databricks documentation, hoping it will create attribute, but its failing. Can you pls give an example how can we create a PII tag/attribute on a set of columns in databricks table?
[In below c_phone is a column containing sensitive data in customers table]
SQL> ALTER TABLE customers ADD ATTRIBUTE pii ON c_phone
Output:
ParseException:
[PARSE_SYNTAX_ERROR] Syntax error at or near 'ATTRIBUTE'(line 1, pos 48)
== SQL ==
ALTER TABLE iotsamples.tpch.customer_events ADD ATTRIBUTE pii ON c_phone
------------------------------------------------^^^