Change theme
Help
Press space for more information.
Show links for this issue (Shortcut: i, l)
Copy issue ID
Previous Issue (Shortcut: k)
Next Issue (Shortcut: j)
Sign in to use full features.
Vote: I am impacted
Notification menu
Refresh (Shortcut: Shift+r)
Go home (Shortcut: u)
Pending code changes (auto-populated)
View issue level access limits(Press Alt + Right arrow for more information)
Request for new functionality
View staffing
Description
Please describe your requested enhancement. Good feature requests will solve common problems or enable new use cases.
What you would like to accomplish:
- Currently, we only can grant access to Cloud Spanner instances and databases. We don't have granularity to grant access at the table level.
How this might work:
- Users can grant access to one specific table, not the whole database or the instance, where the table is located.
If applicable, reasons why alternative solutions are not sufficient:
- As of now, it is mandatory to use the "--database-role"option if the users want to submit a query against one table[1](as the users have configured find-grained access control[2]).
But the users configured the fine-grained access to one table, without the option "--database-role", the users will be able to view all data in the database. If the role can be granted at the table level, the users will only be able to access the data in the specific table configured with the fine-grained access role.
Other information (workarounds you have tried, documentation consulted, etc):
[1]
[2]