Common Operations Supported by DLI System Policy
Table 1 lists the common operations supported by each system policy of DLI. Choose proper system policies according to this table. For details about the SQL statement permission matrix in DLI in terms of permissions on databases, tables, and roles, see SQL Syntax of Batch Jobs > Data Permissions Management > Data Permissions List in the Data Lake Insight SQL Syntax Reference.
Resources |
Operation |
Description |
DLI FullAccess |
DLI ReadOnlyAccess |
Tenant Administrator |
DLI Service Admin |
|---|---|---|---|---|---|---|
Queue |
DROP_QUEUE |
Deleting a queue |
√ |
× |
√ |
√ |
SUBMIT_JOB |
Submitting the job |
√ |
× |
√ |
√ |
|
CANCEL_JOB |
Terminating the job |
√ |
× |
√ |
√ |
|
RESTART |
Restarting a queue |
√ |
× |
√ |
√ |
|
GRANT_PRIVILEGE |
Granting permissions to the queue |
√ |
× |
√ |
√ |
|
REVOKE_PRIVILEGE |
Revoking permissions from the queue |
√ |
× |
√ |
√ |
|
SHOW_PRIVILEGES |
Viewing the queue permissions of other users |
√ |
× |
√ |
√ |
|
Database |
DROP_DATABASE |
Deleting a database |
√ |
× |
√ |
√ |
CREATE_TABLE |
Creating a table |
√ |
× |
√ |
√ |
|
CREATE_VIEW |
Creating a view |
√ |
× |
√ |
√ |
|
EXPLAIN |
Explaining the SQL statement as an execution plan |
√ |
× |
√ |
√ |
|
CREATE_ROLE |
Creating a role |
√ |
× |
√ |
√ |
|
DROP_ROLE |
Deleting a role |
√ |
× |
√ |
√ |
|
SHOW_ROLES |
Displaying a role |
√ |
× |
√ |
√ |
|
GRANT_ROLE |
Binding a role |
√ |
× |
√ |
√ |
|
REVOKE_ROLE |
Unbinding the role |
√ |
× |
√ |
√ |
|
SHOW_USERS |
Displaying the binding relationships between all roles and users |
√ |
× |
√ |
√ |
|
GRANT_PRIVILEGE |
Granting permissions to the database |
√ |
× |
√ |
√ |
|
REVOKE_PRIVILEGE |
Revoking permissions to the database |
√ |
× |
√ |
√ |
|
SHOW_PRIVILEGES |
Viewing database permissions of other users |
√ |
× |
√ |
√ |
|
DISPLAY_ALL_TABLES |
Displaying tables in the database |
√ |
√ |
√ |
√ |
|
DISPLAY_DATABASE |
Displaying databases |
√ |
√ |
√ |
√ |
|
CREATE_FUNCTION |
Creating a function |
√ |
× |
√ |
√ |
|
DROP_FUNCTION |
Deleting a function |
√ |
× |
√ |
√ |
|
SHOW_FUNCTIONS |
Displaying all functions |
√ |
× |
√ |
√ |
|
DESCRIBE_FUNCTION |
Displaying function details |
√ |
× |
√ |
√ |
|
Table |
DROP_TABLE |
Deleting a table |
√ |
× |
√ |
√ |
SELECT |
Querying a table |
√ |
× |
√ |
√ |
|
INSERT_INTO_TABLE |
Inserting |
√ |
× |
√ |
√ |
|
ALTER_TABLE_ADD_COLUMNS |
Adding a column |
√ |
× |
√ |
√ |
|
INSERT_OVERWRITE_TABLE |
Rewriting |
√ |
× |
√ |
√ |
|
ALTER_TABLE_RENAME |
Renaming a table |
√ |
× |
√ |
√ |
|
ALTER_TABLE_ADD_PARTITION |
Adding partitions to the partition table |
√ |
× |
√ |
√ |
|
ALTER_TABLE_RENAME_PARTITION |
Renaming a table partition |
√ |
× |
√ |
√ |
|
ALTER_TABLE_DROP_PARTITION |
Deleting partitions from a partition table |
√ |
× |
√ |
√ |
|
SHOW_PARTITIONS |
Displaying all partitions |
√ |
× |
√ |
√ |
|
ALTER_TABLE_RECOVER_PARTITION |
Restoring table partitions |
√ |
× |
√ |
√ |
|
ALTER_TABLE_SET_LOCATION |
Setting the partition path |
√ |
× |
√ |
√ |
|
GRANT_PRIVILEGE |
Granting permissions to the table |
√ |
× |
√ |
√ |
|
REVOKE_PRIVILEGE |
Revoking permissions from the table |
√ |
× |
√ |
√ |
|
SHOW_PRIVILEGES |
Viewing table permissions of other users |
√ |
× |
√ |
√ |
|
DISPLAY_TABLE |
Displaying a table |
√ |
√ |
√ |
√ |
|
DESCRIBE_TABLE |
Displaying table information |
√ |
× |
√ |
√ |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
