Updated on 2024-02-02 GMT+08:00

Querying Authorization

This section describes how to query an authorized permission.

Procedure

  1. Log in to the LakeFormation console.
  2. In the upper left corner, click and choose Analytics > LakeFormation to access the LakeFormation console.
  3. Select the target LakeFormation instance from the drop-down list box on the left and choose Data Permissions > Data Authorization.

    You can select the target permission information using Authorization Entity, Entity Type, and Entity Source in the upper right corner as filters.

  4. View the data authorization information in the displayed list.

    The following table lists the information items:

    Table 1 Authorization information

    Item

    Description

    Policy Type

    The values include:

    • DEFAULT: default permission policy.
    • ROW_FILTER: row filtering permission policy, including row filtering criteria.

    Authorization Entity

    Name of the authorized entity.

    Entity Type

    Type of the authorized entity. GROUP indicates the user group, ROLE indicates role, and USER indicates user.

    Authorization Object

    Name or path of the authorized resource.

    If the authorization type is set to Resources, the format is Catalog.[Database].[Table].

    Resource Type

    The values include:

    • CATALOG: catalog
    • DATABASE: database
    • TABLE: table
    • COLUMN: column
    • FUNC: function
    • URI: path

    Permission

    Name of the authorized permission. For details about the permission description, see Table 2.

    Authorized Permission

    Authorized permission.