SHOW PRIVILEGES¶
列出授予应用程序的权限。
语法
参数
name指定应用程序的名称。
输出
指定授予应用程序的权限。
| 列 | 描述 |
|---|---|
| 权限 | 清单文件中指定的权限的名称。 |
| 描述 | A description of the privilege, which is specified in the manifest file. For details, refer to Access control privileges. |
| is_granted | 指定使用者是否已授予权限。 |
| is_grantable | Specifies if the user running the command has an activated role that can grant this privilege |
使用说明
- The command doesn’t require a running warehouse to execute.
- The command only returns objects for which the current user’s current role has been granted at least one access privilege.
- The MANAGE GRANTS access privilege implicitly allows its holder to see every object in the account. By default, only the account administrator (users with the ACCOUNTADMIN role) and security administrator (users with the SECURITYADMIN role) have the MANAGE GRANTS privilege.
-
To post-process the output of this command, you can use the pipe operator (
->>) or the RESULT_SCAN function. Both constructs treat the output as a result set that you can query.For example, you can use the pipe operator or RESULT_SCAN function to select specific columns from the SHOW command output or filter the rows.
When you refer to the output columns, use double-quoted identifiers for the column names. For example, to select the output column
type, specifySELECT "type".You must use double-quoted identifiers because the output column names for SHOW commands are in lowercase. The double quotes ensure that the column names in the SELECT list or WHERE clause match the column names in the SHOW command output that was scanned.