security privileged-actions#
Возвращает информацию о видах привилегированных действий CedrusData Catalog.
Синтаксис#
catalog security privileged-actions
Контроль доступа#
Команда не требует авторизации.
Примеры#
Получить список видов привилегированных действий:
catalog security privileged-actions
+---------------------------------+-------------------+
| action | securable-type |
+---------------------------------+-------------------+
| read-metrics | metastore |
| principal.create | metastore |
| principal.alter | principal |
| principal.drop | principal |
| principal.impersonate | principal |
| principal.describe | principal |
| principal.list | metastore |
| principal.create-access-token | principal |
| principal.drop-access-token | principal |
| principal.list-access-tokens | metastore |
| role.grant | principal |
| role.revoke | principal |
| role.list-members | principal |
| privilege.grant | |
| privilege.revoke | |
| privilege.list-principal-grants | principal |
| privilege.list-securable-grants | |
| grant-ownership | |
| file-system.create | metastore |
| file-system.alter | file-system |
| file-system.drop | file-system |
| file-system.check | file-system |
| file-system.describe | file-system |
| file-system.list | metastore |
| catalog.create | metastore |
| catalog.alter | catalog |
| catalog.drop | catalog |
| catalog.check | catalog |
| catalog.describe | catalog |
| catalog.list | metastore |
| namespace.create | catalog |
| namespace.alter | namespace |
| namespace.drop | namespace |
| namespace.describe | namespace |
| namespace.list | metastore |
| table.create | namespace |
| table.alter | table |
| table.drop | table |
| table.describe | table |
| table.modify | table |
| view.create | namespace |
| view.alter | view |
| view.drop | view |
| view.describe | view |
| materialized-view.create | namespace |
| materialized-view.alter | materialized-view |
| materialized-view.drop | materialized-view |
| materialized-view.describe | materialized-view |
| materialized-view.modify | materialized-view |
| object.list | metastore |
| object-group.create | metastore |
| object-group.alter | object-group |
| object-group.drop | object-group |
| object-group.describe | object-group |
| object-group.list | metastore |
| object-group.list-objects | metastore |
| compute-engine.create | metastore |
| compute-engine.list | metastore |
| compute-engine.list-operations | metastore |
| compute-engine.alter | compute-engine |
| compute-engine.drop | compute-engine |
| compute-engine.check | compute-engine |
| compute-engine.describe | compute-engine |
| compute-engine.start-operation | compute-engine |
| compute-engine.cancel-operation | compute-engine |
| job.create | compute-engine |
| job.list | metastore |
| job.alter | job |
| job.drop | job |
| job.describe | job |
+---------------------------------+-------------------+
Получить список видов привилегированных действий в формате JSON:
catalog --json security privileged-actions
{
"items" : [ {
"action" : "read-metrics",
"securable-type" : "metastore"
}, {
"action" : "principal.create",
"securable-type" : "metastore"
}, {
"action" : "principal.alter",
"securable-type" : "principal"
}, {
"action" : "principal.drop",
"securable-type" : "principal"
}, {
"action" : "principal.impersonate",
"securable-type" : "principal"
}, {
"action" : "principal.describe",
"securable-type" : "principal"
}, {
"action" : "principal.list",
"securable-type" : "metastore"
}, {
"action" : "principal.create-access-token",
"securable-type" : "principal"
}, {
"action" : "principal.drop-access-token",
"securable-type" : "principal"
}, {
"action" : "principal.list-access-tokens",
"securable-type" : "metastore"
}, {
"action" : "role.grant",
"securable-type" : "principal"
}, {
"action" : "role.revoke",
"securable-type" : "principal"
}, {
"action" : "role.list-members",
"securable-type" : "principal"
}, {
"action" : "privilege.grant",
"securable-type" : null
}, {
"action" : "privilege.revoke",
"securable-type" : null
}, {
"action" : "privilege.list-principal-grants",
"securable-type" : "principal"
}, {
"action" : "privilege.list-securable-grants",
"securable-type" : null
}, {
"action" : "grant-ownership",
"securable-type" : null
}, {
"action" : "file-system.create",
"securable-type" : "metastore"
}, {
"action" : "file-system.alter",
"securable-type" : "file-system"
}, {
"action" : "file-system.drop",
"securable-type" : "file-system"
}, {
"action" : "file-system.check",
"securable-type" : "file-system"
}, {
"action" : "file-system.describe",
"securable-type" : "file-system"
}, {
"action" : "file-system.list",
"securable-type" : "metastore"
}, {
"action" : "catalog.create",
"securable-type" : "metastore"
}, {
"action" : "catalog.alter",
"securable-type" : "catalog"
}, {
"action" : "catalog.drop",
"securable-type" : "catalog"
}, {
"action" : "catalog.check",
"securable-type" : "catalog"
}, {
"action" : "catalog.describe",
"securable-type" : "catalog"
}, {
"action" : "catalog.list",
"securable-type" : "metastore"
}, {
"action" : "namespace.create",
"securable-type" : "catalog"
}, {
"action" : "namespace.alter",
"securable-type" : "namespace"
}, {
"action" : "namespace.drop",
"securable-type" : "namespace"
}, {
"action" : "namespace.describe",
"securable-type" : "namespace"
}, {
"action" : "namespace.list",
"securable-type" : "metastore"
}, {
"action" : "table.create",
"securable-type" : "namespace"
}, {
"action" : "table.alter",
"securable-type" : "table"
}, {
"action" : "table.drop",
"securable-type" : "table"
}, {
"action" : "table.describe",
"securable-type" : "table"
}, {
"action" : "table.modify",
"securable-type" : "table"
}, {
"action" : "view.create",
"securable-type" : "namespace"
}, {
"action" : "view.alter",
"securable-type" : "view"
}, {
"action" : "view.drop",
"securable-type" : "view"
}, {
"action" : "view.describe",
"securable-type" : "view"
}, {
"action" : "materialized-view.create",
"securable-type" : "namespace"
}, {
"action" : "materialized-view.alter",
"securable-type" : "materialized-view"
}, {
"action" : "materialized-view.drop",
"securable-type" : "materialized-view"
}, {
"action" : "materialized-view.describe",
"securable-type" : "materialized-view"
}, {
"action" : "materialized-view.modify",
"securable-type" : "materialized-view"
}, {
"action" : "object.list",
"securable-type" : "metastore"
}, {
"action" : "object-group.create",
"securable-type" : "metastore"
}, {
"action" : "object-group.alter",
"securable-type" : "object-group"
}, {
"action" : "object-group.drop",
"securable-type" : "object-group"
}, {
"action" : "object-group.describe",
"securable-type" : "object-group"
}, {
"action" : "object-group.list",
"securable-type" : "metastore"
}, {
"action" : "object-group.list-objects",
"securable-type" : "metastore"
}, {
"action" : "compute-engine.create",
"securable-type" : "metastore"
}, {
"action" : "compute-engine.list",
"securable-type" : "metastore"
}, {
"action" : "compute-engine.list-operations",
"securable-type" : "metastore"
}, {
"action" : "compute-engine.alter",
"securable-type" : "compute-engine"
}, {
"action" : "compute-engine.drop",
"securable-type" : "compute-engine"
}, {
"action" : "compute-engine.check",
"securable-type" : "compute-engine"
}, {
"action" : "compute-engine.describe",
"securable-type" : "compute-engine"
}, {
"action" : "compute-engine.start-operation",
"securable-type" : "compute-engine"
}, {
"action" : "compute-engine.cancel-operation",
"securable-type" : "compute-engine"
}, {
"action" : "job.create",
"securable-type" : "compute-engine"
}, {
"action" : "job.list",
"securable-type" : "metastore"
}, {
"action" : "job.alter",
"securable-type" : "job"
}, {
"action" : "job.drop",
"securable-type" : "job"
}, {
"action" : "job.describe",
"securable-type" : "job"
} ]
}