| Package | Description |
|---|---|
| com.facebook.presto.spi.connector | |
| com.facebook.presto.spi.security |
| Modifier and Type | Method and Description |
|---|---|
default void |
ConnectorAccessControl.checkCanAddColumn(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to add columns to the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanCreateRole(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String role,
Optional<PrestoPrincipal> grantor) |
default void |
ConnectorAccessControl.checkCanCreateSchema(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String schemaName)
Check if identity is allowed to create the specified schema in this catalog.
|
default void |
ConnectorAccessControl.checkCanCreateTable(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to create the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanCreateView(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName viewName)
Check if identity is allowed to create the specified view in this catalog.
|
default void |
ConnectorAccessControl.checkCanCreateViewWithSelectFromColumns(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName,
Set<String> columnNames)
Check if identity is allowed to create a view that selects from the specified columns in a relation.
|
default void |
ConnectorAccessControl.checkCanDeleteFromTable(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to delete from the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanDropColumn(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to drop columns from the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanDropRole(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String role) |
default void |
ConnectorAccessControl.checkCanDropSchema(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String schemaName)
Check if identity is allowed to drop the specified schema in this catalog.
|
default void |
ConnectorAccessControl.checkCanDropTable(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to drop the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanDropView(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName viewName)
Check if identity is allowed to drop the specified view in this catalog.
|
default void |
ConnectorAccessControl.checkCanGrantRoles(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
Set<String> roles,
Set<PrestoPrincipal> grantees,
boolean withAdminOption,
Optional<PrestoPrincipal> grantor,
String catalogName) |
default void |
ConnectorAccessControl.checkCanGrantTablePrivilege(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
Privilege privilege,
SchemaTableName tableName,
PrestoPrincipal grantee,
boolean withGrantOption)
Check if identity is allowed to grant to any other user the specified privilege on the specified table.
|
default void |
ConnectorAccessControl.checkCanInsertIntoTable(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to insert into the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanRenameColumn(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to rename a column in the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanRenameSchema(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String schemaName,
String newSchemaName)
Check if identity is allowed to rename the specified schema in this catalog.
|
default void |
ConnectorAccessControl.checkCanRenameTable(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName,
SchemaTableName newTableName)
Check if identity is allowed to rename the specified table in this catalog.
|
default void |
ConnectorAccessControl.checkCanRevokeRoles(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
Set<String> roles,
Set<PrestoPrincipal> grantees,
boolean adminOptionFor,
Optional<PrestoPrincipal> grantor,
String catalogName) |
default void |
ConnectorAccessControl.checkCanRevokeTablePrivilege(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
Privilege privilege,
SchemaTableName tableName,
PrestoPrincipal revokee,
boolean grantOptionFor)
Check if identity is allowed to revoke the specified privilege on the specified table from any user.
|
default void |
ConnectorAccessControl.checkCanSelectFromColumns(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName,
Set<Subfield> columnOrSubfieldNames)
Check if identity is allowed to select from the specified columns.
|
default void |
ConnectorAccessControl.checkCanSetCatalogSessionProperty(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String propertyName)
Check if identity is allowed to set the specified property in this catalog.
|
default void |
ConnectorAccessControl.checkCanSetRole(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext accessControlContext,
String role,
String catalogName) |
default void |
ConnectorAccessControl.checkCanShowCurrentRoles(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String catalogName)
Check if identity is allowed to show current roles on the specified catalog.
|
default void |
ConnectorAccessControl.checkCanShowRoleGrants(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String catalogName)
Check if identity is allowed to show its own role grants on the specified catalog.
|
default void |
ConnectorAccessControl.checkCanShowRoles(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String catalogName)
Check if identity is allowed to show roles on the specified catalog.
|
default void |
ConnectorAccessControl.checkCanShowSchemas(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context)
Check if identity is allowed to execute SHOW SCHEMAS in a catalog.
|
default void |
ConnectorAccessControl.checkCanShowTablesMetadata(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
String schemaName)
Check if identity is allowed to show metadata of tables by executing SHOW TABLES, SHOW GRANTS etc.
|
default void |
ConnectorAccessControl.checkCanTruncateTable(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
SchemaTableName tableName)
Check if identity is allowed to truncate the specified table in this catalog.
|
default Set<String> |
ConnectorAccessControl.filterSchemas(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
Set<String> schemaNames)
Filter the list of schemas to those visible to the identity.
|
default Set<SchemaTableName> |
ConnectorAccessControl.filterTables(ConnectorTransactionHandle transactionHandle,
ConnectorIdentity identity,
AccessControlContext context,
Set<SchemaTableName> tableNames)
Filter the list of tables and views to those visible to the identity.
|
| Modifier and Type | Method and Description |
|---|---|
default void |
SystemAccessControl.checkCanAccessCatalog(Identity identity,
AccessControlContext context,
String catalogName)
Check if identity is allowed to access the specified catalog
|
default void |
SystemAccessControl.checkCanAddColumn(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to add columns to the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanCreateSchema(Identity identity,
AccessControlContext context,
CatalogSchemaName schema)
Check if identity is allowed to create the specified schema in a catalog.
|
default void |
SystemAccessControl.checkCanCreateTable(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to create the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanCreateView(Identity identity,
AccessControlContext context,
CatalogSchemaTableName view)
Check if identity is allowed to create the specified view in a catalog.
|
default void |
SystemAccessControl.checkCanCreateViewWithSelectFromColumns(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table,
Set<String> columns)
Check if identity is allowed to create a view that selects from the specified columns in a relation.
|
default void |
SystemAccessControl.checkCanDeleteFromTable(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to delete from the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanDropColumn(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to drop columns from the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanDropSchema(Identity identity,
AccessControlContext context,
CatalogSchemaName schema)
Check if identity is allowed to drop the specified schema in a catalog.
|
default void |
SystemAccessControl.checkCanDropTable(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to drop the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanDropView(Identity identity,
AccessControlContext context,
CatalogSchemaTableName view)
Check if identity is allowed to drop the specified view in a catalog.
|
default void |
SystemAccessControl.checkCanGrantTablePrivilege(Identity identity,
AccessControlContext context,
Privilege privilege,
CatalogSchemaTableName table,
PrestoPrincipal grantee,
boolean withGrantOption)
Check if identity is allowed to grant the specified privilege to the grantee on the specified table.
|
default void |
SystemAccessControl.checkCanInsertIntoTable(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to insert into the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanRenameColumn(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to rename a column in the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanRenameSchema(Identity identity,
AccessControlContext context,
CatalogSchemaName schema,
String newSchemaName)
Check if identity is allowed to rename the specified schema in a catalog.
|
default void |
SystemAccessControl.checkCanRenameTable(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table,
CatalogSchemaTableName newTable)
Check if identity is allowed to rename the specified table in a catalog.
|
default void |
SystemAccessControl.checkCanRevokeTablePrivilege(Identity identity,
AccessControlContext context,
Privilege privilege,
CatalogSchemaTableName table,
PrestoPrincipal revokee,
boolean grantOptionFor)
Check if identity is allowed to revoke the specified privilege on the specified table from the revokee.
|
default void |
SystemAccessControl.checkCanSelectFromColumns(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table,
Set<String> columns)
Check if identity is allowed to select from the specified columns in a relation.
|
default void |
SystemAccessControl.checkCanSetCatalogSessionProperty(Identity identity,
AccessControlContext context,
String catalogName,
String propertyName)
Check if identity is allowed to set the specified property in a catalog.
|
void |
SystemAccessControl.checkCanSetSystemSessionProperty(Identity identity,
AccessControlContext context,
String propertyName)
Check if identity is allowed to set the specified system property.
|
void |
SystemAccessControl.checkCanSetUser(Identity identity,
AccessControlContext context,
Optional<Principal> principal,
String userName)
Check if the principal is allowed to be the specified user.
|
default void |
SystemAccessControl.checkCanShowSchemas(Identity identity,
AccessControlContext context,
String catalogName)
Check if identity is allowed to execute SHOW SCHEMAS in a catalog.
|
default void |
SystemAccessControl.checkCanShowTablesMetadata(Identity identity,
AccessControlContext context,
CatalogSchemaName schema)
Check if identity is allowed to show metadata of tables by executing SHOW TABLES, SHOW GRANTS etc.
|
default void |
SystemAccessControl.checkCanTruncateTable(Identity identity,
AccessControlContext context,
CatalogSchemaTableName table)
Check if identity is allowed to truncate the specified table in a catalog.
|
void |
SystemAccessControl.checkQueryIntegrity(Identity identity,
AccessControlContext context,
String query)
Check if the query is unexpectedly modified using the credentials passed in the identity.
|
default Set<String> |
SystemAccessControl.filterCatalogs(Identity identity,
AccessControlContext context,
Set<String> catalogs)
Filter the list of catalogs to those visible to the identity.
|
default Set<String> |
SystemAccessControl.filterSchemas(Identity identity,
AccessControlContext context,
String catalogName,
Set<String> schemaNames)
Filter the list of schemas in a catalog to those visible to the identity.
|
default Set<SchemaTableName> |
SystemAccessControl.filterTables(Identity identity,
AccessControlContext context,
String catalogName,
Set<SchemaTableName> tableNames)
Filter the list of tables and views to those visible to the identity.
|
default AuthorizedIdentity |
SystemAccessControl.selectAuthorizedIdentity(Identity identity,
AccessControlContext context,
String userName,
List<X509Certificate> certificates) |
Copyright © 2012–2022. All rights reserved.