Policys für SQL-Endpunkte

ALLOW GROUP dataflow-admins to MANAGE dataflow-sqlendpoint IN tenancy

ALLOW GROUP dataflow-sql-users to READ dataflow-sqlendpoint IN tenancy

ALLOW GROUP dataflow-sql-users to USE dataflow-sqlendpoint IN tenancy

Allow group dataflow-sql-users to READ log-groups IN compartment

Allow group dataflow-sql-users to MANAGE log-groups IN compartment

Allow group dataflow-sql-users to USE log-groups IN compartment

Allow group dataflow-sql-users to READ log-content IN compartment

ALL {resource.compartment.id = 'YOUR_COMPARTMENT_ID'}

Allow dynamic-group <dynamic_group_name> to {CATALOG_METASTORE_EXECUTE, CATALOG_METASTORE_INSPECT, CATALOG_METASTORE_READ}
 in tenancy WHERE ALL {request.principal.type='dataflowsqlendpoint'}

ALLOW DYNAMIC-GROUP YOUR_DYNAMIC_GROUP TO MANAGE objects IN TENANCY WHERE ALL {request.principal.type='dataflowsqlendpoint'}
ALLOW DYNAMIC-GROUP YOUR_DYNAMIC_GROUP TO MANAGE buckets IN TENANCY WHERE ALL {request.principal.type='dataflowsqlendpoint'}