Database Reference
In-Depth Information
Permission
Description
CQL commands allowed
DROP KEYSPACE
GRANT
AUTHORIZE
Grant or revoke permissions to other users
REVOKE
There is also an
ALL
permission that is simply shorthand for granting all six of the per-
missions listed above.
As well as granting a permission across an entire keyspace, we can also grant permissions
to operate on a specific table. For instance, we might want to give the data analytics team
cern. To do that, we'll use
GRANT
to issue a permission on a specific table:
GRANT MODIFY PERMISSION
ON TABLE "my_status"."status_update_views"
TO 'data_analytics';
Note that we use
ON TABLE
instead of
ON KEYSPACE
here, and that we provide the
fully-qualified name of the table we want the permission to apply to. Of course, if we've
previously issued a
USE "my_status";
command in this session, we can refer to the
table name without providing the keyspace name explicitly.
Note
The
GRANT
statement can be used to provide all manner of access, from a very broad
mandate to a very narrow set of permissions. For full details of the
GRANT
syntax, see the
DataStax CQL reference:
http://www.datastax.com/documentation/cql/3.1/cql/