pinot icon indicating copy to clipboard operation
pinot copied to clipboard

Published 20 hours ago verified publisher icon apache

[Feature Request] Provide user access to all tables except tableX

Open piby180 opened this issue 5 months ago • 4 comments

We are currently using ZkBasicAuthAccessControlFactory to manage our users in Pinot.

With this, we can

  1. provide access to ALL tables
  2. provide access to specific tables. List of tables have to be provided explicitly here

We now have 100s of tables and we often get the requirement to provide access to all tables except tableX. With the current setup, the only way is to provide a list of all tables except tableX in POST /users rest call.

We would like to request to implement a new version of payload for

POST /users

{
    "username" : "user1"
    "password" : "test",
    "component" : "BROKER",
    "role" : "USER",
    "permissions" : ["READ"],
    "tables" : ["ALL"],
    "excludeTables" : ["tableX"]
}

Or another option could be the support of regular expressions

POST /users

{
    "username" : "user1"
    "password" : "test",
    "component" : "BROKER",
    "role" : "USER",
    "permissions" : ["READ"],
    "includeTables" : "vendorX*", // include all tables which starts with "vendorX"
    "excludeTables" : "vendorY*" // exclude all tables which starts with "vendorY"
}

piby180 avatar Sep 25 '24 11:09 piby180