Hello Databricks Community,
I'm reaching out with a query regarding access control in the hive_metastore. I've encountered behavior that I'd like to understand better and potentially address.
To illustrate the situation:
- I've set up three users for testing purposes: admin, dataengineer1, and dataanalyst1.
- The admin user granted permissions to dataengineer1 for three specific tables: circuits, country_regions, and results.
Case 1: When using SQL Warehouse (as seen in the screenshot, labeled as serverless-sql-wh) or a Cluster with shared Access mode, dataengineer1 can only view the tables they have permissions for. This is the expected behavior.
![DeltaTrain_0-1691616911858.png DeltaTrain_0-1691616911858.png](/t5/image/serverpage/image-id/3108i14F7BCD73164C1D1/image-dimensions/800x184?v=v2)
Case 2: However, when a Single User Access mode cluster is activated (in the screenshot, labeled as dataengineer1@d...), dataengineer1 can view all schemas and tables. This is not the desired behavior.
![DeltaTrain_1-1691617650542.png DeltaTrain_1-1691617650542.png](/t5/image/serverpage/image-id/3109i691332FFB37C7A7F/image-dimensions/810x266?v=v2)
I'm hoping to find a solution that ensures even in Single User Access Mode, users can only access Schemas and Tables for which they have permission.
Any insights or suggestions would be greatly appreciated. I value the expertise of this community and look forward to your responses.
Thank you