SHOW DELEGATED AUTHORIZATIONS¶
列出您拥有访问权限的有效委派授权。此命令可用于列出针对指定用户或集成(或当前用户)或您的整个账户的 DELEGATED AUTHORIZATIONS。
语法
变体
SHOW DELEGATED AUTHORIZATIONS BY USER username列出用户已批准的全部有效委派授权。此变体需要用户的 MODIFY 权限。
SHOW DELEGATED AUTHORIZATIONS TO SECURITY INTEGRATION integration_name列出已为集成批准的全部有效委派授权。此变体需要 ACCOUNTADMIN 角色。
有关各变体的详细信息,请参阅:
使用说明
- The command doesn’t require a running warehouse to execute.
- The command only returns objects for which the current user’s current role has been granted at least one access privilege.
- The MANAGE GRANTS access privilege implicitly allows its holder to see every object in the account. By default, only the account administrator (users with the ACCOUNTADMIN role) and security administrator (users with the SECURITYADMIN role) have the MANAGE GRANTS privilege.
-
To post-process the output of this command, you can use the pipe operator (
->>) or the RESULT_SCAN function. Both constructs treat the output as a result set that you can query.For example, you can use the pipe operator or RESULT_SCAN function to select specific columns from the SHOW command output or filter the rows.
When you refer to the output columns, use double-quoted identifiers for the column names. For example, to select the output column
type, specifySELECT "type".You must use double-quoted identifiers because the output column names for SHOW commands are in lowercase. The double quotes ensure that the column names in the SELECT list or WHERE clause match the column names in the SHOW command output that was scanned.
-
The command returns a maximum of ten thousand records for the specified object type, as dictated by the access privileges for the role used to execute the command. Any records above the ten thousand records limit aren’t returned, even with a filter applied.
To view results for which more than ten thousand records exist, query the corresponding view (if one exists) in the Snowflake Information Schema.
示例
列出您账户的所有委派授权:
列出指定用户的所有委派授权:
列出指定集成的所有委派授权: