Help Center/ GaussDB(DWS)/ Troubleshooting/ Account/Permission/Password/ An Error Message Is Displayed When a Common User Executes the Statement for Creating or Deleting a GDS or OBS Foreign Table, Indicating that the User Does Not Have the Permission or the Permission Is Insufficient

Updated on 2024-03-13 GMT+08:00

View PDF

An Error Message Is Displayed When a Common User Executes the Statement for Creating or Deleting a GDS or OBS Foreign Table, Indicating that the User Does Not Have the Permission or the Permission Is Insufficient

Symptom

An administrator can execute the statement for creating a GDS or OBS foreign table, but an error "ERROR: permission denied to create foreign table in security mode" is reported when a common user executes the statement.

CREATE USER u1 PASSWORD '{password}';
SET current_schema = u;
CREATE FOREIGN TABLE customer_ft
(
    c_customer_sk             integer               ,
    c_customer_id             char(16)              ,
    c_current_cdemo_sk        integer               ,
    c_current_hdemo_sk        integer               ,
    c_current_addr_sk         integer    
)
    SERVER gsmpp_server
    OPTIONS
(
    location 'gsfs://192.168.0.90:5000/customer1*.dat',
    FORMAT 'TEXT' ,
    DELIMITER '|',
    encoding 'utf8',
    mode 'Normal')
READ ONLY;
ERROR:  permission denied to create foreign table in security mode

Possible Causes

The error message indicates that the common user does not have the permission for creating a foreign table.

Query the user permissions in the case.

SELECT rolname,roluseft FROM pg_roles WHERE rolname ='u1' ORDER BY rolname desc;
 rolname | roluseft
---------+----------
 u1      | f
(1 row)

Handling Procedure

You can use the ALTER USER or ALTER ROLE syntax to specify the USEFT parameter, granting a role or user the permission to use foreign tables.

USEFT | NOUSEFT determines whether a new role or user can perform operations on foreign tables, such as creating, deleting, modifying, and reading/witting foreign tables.

If USEFT is specified, the role or user can perform operations on foreign tables.
The default value is NOUSEFT, indicating that the new role or user does not have permissions to perform operations on foreign tables.

To grant the permission to use foreign tables to a common user or role, run the following command as a database administrator:

     
          ALTER USER user_name USEFT;

For details about how to modify user or role permissions, see ALTER USER or ALTER ROLE.

Common users or roles can create foreign tables after being granted the permission to use foreign tables.

Parent topic: Account/Permission/Password

Previous topic: How Do I Revoke the Permission of a User If grant select on table t1 to public Has Been Executed on a Table

Next topic: After the all Permission Is Granted to the Schema of a User, the Error Message "ERROR: current user does not have privilege to role tom" Persists During Table Creation

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel