This blog post was authored by Soniya Shah.
In this release, we introduce some security enhancements. We’ve added the ability to grant and revoke privileges on system tables, using the same syntax as you would for granting and revoking on tables. However, there are some limitations about the types of privileges you can use with system tables:
• GRANT (Tables)
• REVOKE (Tables)
The dbadmin can now grant or revoke privileges on specific system tables and virtual views, as they would with regular tables.
This ability expands the functionality of the global catalog to include default grants on system tables. Grants on virtual tables and virtual views are now visible. However, grants on system schemas are not allowed.
We’ve also added two new functions that allow users to open and restrict access to system tables for a given session:
: opens access to non-superuser-only tables that are not accessible during lockdown.
: restricts access to non-superuser-only tables that are not accessible during lockdown.
These new metafunctions replace the RestrictSystemTables configuration parameter.
For more information, see Security and Authentication
in the Vertica documentation.