Granting Data Permission to Users (Discarded)
Function
This API is used to grant database or table data usage permission to specified users.
The user group containing the authorized user must have the Tenant Guest permission in the region where the user group belongs.
For details about the Tenant Guest permission and how to apply for the permission, see System Permissions and Creating a User Group in Identity and Access Management User Guide.
This API has been discarded and is not recommended.
URI
- URI format
- Parameter description
Table 1 URI parameter Parameter
Mandatory
Type
Description
project_id
Yes
String
Project ID, which is used for resource isolation. For details about how to obtain its value, see Obtaining a Project ID.
Request
|
Parameter |
Mandatory |
Type |
Description |
|---|---|---|---|
|
user_name |
Yes |
String |
Name of the user who is granted with usage permission on a queue or whose queue usage permission is revoked or updated. Example value: user2. |
|
action |
Yes |
String |
Grants or revokes the permission. The parameter value can be grant, revoke, or update. Example value: grant.
NOTE:
Users can perform the update operation only when they have been granted with the grant and revoke permissions. |
|
privileges |
Yes |
Array of objects |
Permission granting information. For details, see Table 3. Example value: [ {"object": "databases.db1.tables.tb2.columns.column1","privileges": ["SELECT"]},"object": "databases.db1.tables.tbl","privileges": [ "DROP_TABLE"] |
|
Parameter |
Mandatory |
Type |
Description |
|---|---|---|---|
|
object |
Yes |
String |
Data objects to be assigned. If they are named:
|
|
privileges |
Yes |
Array of Strings |
List of permissions to be granted, revoked, or updated. For details about available permissions, see Data Permission List. Example value: [SELECT].
NOTE:
If Action is Update and the update list is empty, all permissions of the user in the database or table are revoked. |
Response
|
Parameter |
Mandatory |
Type |
Description |
|---|---|---|---|
|
is_success |
No |
Boolean |
Whether the request is successfully executed. Value true indicates that the request is successfully executed. Example value: true. |
|
message |
No |
String |
System prompt. If execution succeeds, the parameter setting may be left blank. Example value: left blank. |
Example Request
Grant user2 the permission to query data in the database db1, delete the data table db1.tbl, and query data in a specified column db1.tbl.column1 of a data table.
{
"user_name": "user2",
"action": "grant",
"privileges": [
{
"object": "databases.db1.tables.tb2.columns.column1",
"privileges": [
"SELECT"
]
},
{
"object": "databases.db1.tables.tbl",
"privileges": [
"DROP_TABLE"
]
},
{
"object": "databases.db1",
"privileges": [
"SELECT"
]
}
]
}
Example Response
{
"is_success": true,
"message": ""
}
Status Codes
Table 5 describes the status code.
Error Codes
If an error occurs when this API is invoked, the system does not return the result similar to the preceding example, but returns the error code and error information. For details, see Error Codes.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
