Database Reference
In-Depth Information
Permission
Description
CQL commands allowed
DROP KEYSPACE
GRANT
AUTHORIZE Grant or revoke permissions to other users
REVOKE
There is also an ALL permission that is simply shorthand for granting all six of the per-
missions listed above.
As well as granting a permission across an entire keyspace, we can also grant permissions
to operate on a specific table. For instance, we might want to give the data analytics team
full read/write access to the status_update_views table that we created in Chapter
9 , Aggregating Time-Series Data , since the data in that table is primarily an analytics con-
cern. To do that, we'll use GRANT to issue a permission on a specific table:
GRANT MODIFY PERMISSION
ON TABLE "my_status"."status_update_views"
TO 'data_analytics';
Note that we use ON TABLE instead of ON KEYSPACE here, and that we provide the
fully-qualified name of the table we want the permission to apply to. Of course, if we've
previously issued a USE "my_status"; command in this session, we can refer to the
table name without providing the keyspace name explicitly.
Note
The GRANT statement can be used to provide all manner of access, from a very broad
mandate to a very narrow set of permissions. For full details of the GRANT syntax, see the
DataStax CQL reference: http://www.datastax.com/documentation/cql/3.1/cql/
cql_reference/grant_r.html .
Previous Page
Next Page
Learning Apache Cassandra
Search WWH ::




Custom Search
Home