Access Control for Connection
Connection roles, operations, access control rules.
Access Levels for Connections
The access control for connections vary depending on the access level. There are three types of access levels for connections:
Workspace
All users can access workspace connections.
Protected
Only granted users can access protected connections. Workspace owners can edit permissions.
Private
Only granted users can access protected connections. Workspace owners cannot edit permissions.
Roles for Connections
The following roles determine what operations users can perform on connections.
connection.Owner
Can edit and delete connections, and change sharing settings.
connection.User
Can execute queries and view query results and tables. Can publish reports associated with the connection.
connection.Viewer
Can view query results and tables
Connection Operations and Access Control Rules
Here are the operations that can be performed on connections and the roles required for each level.
Create a connection.
workspace.Editor
workspace.Editor
workspace.Editor
View a list of connection names.
workspace.Viewer
workspace.Viewer
workspace.Editor AND connection.Viewer
Edit and delete a connection.
workspace.Owner OR connection.Owner
workspace.Owner OR (workspace.Viewer AND connection.Owner)
workspace.Editor AND connection.Owner
Change permission settings of a connection.
N/A
workspace.Owner OR (workspace.Viewer AND connection.Owner)
workspace.Editor AND connection.Owner
Execute any SQL codes.
workspace.Editor
workspace.Viewer AND connection.User
workspace.Editor AND connection.User
Get sql job results and table informations.
workspace.Viewer
workspace.Viewer and connection.Viewer
workspace.Editor AND connection.Viewer
Last updated