HonahX commented on code in PR #1460: URL: https://github.com/apache/polaris/pull/1460#discussion_r2060524506
########## site/content/in-dev/unreleased/access-control.md: ########## @@ -156,6 +156,17 @@ To grant the full set of privileges (drop, list, read, write, etc.) on an object | CATALOG_READ_PROPERTIES | Enables listing catalogs and reading properties of the catalog. | | CATALOG_WRITE_PROPERTIES | Enables configuring catalog properties. | +### Policy privileges + +| Privilege | Description | +| -----------------------| ----------- | +| POLICY_CREATE | Enables creating a policy under specified namespace | +| POLICY_READ | Enables reading policy content and metadata | +| POLICY_WRITE | Enables updating the policy details such as its content or description | +| POLICY_LIST | Enables listing any policy from the catalog | +| POLICY_DROP | Enables dropping a policy if it is not attached to any resource entity | +| POLICY_FULL_METADATA | Grants all policy privileges. | Review Comment: Thanks for adding these. There are more privileges added recently for policy attachment: https://github.com/apache/polaris/blob/6a217227173b9902eab636885961c9d3907919a4/polaris-core/src/main/java/org/apache/polaris/core/entity/PolarisPrivilege.java#L145-L152 I can also add them in a follow-up PR : ) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@polaris.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
