Privileges for Accessing KVStore APIs
Privilege(s) required: READ_ANY, or READ_TABLE/READ_ANY_TABLE if accessing key-values are in tables.
-
get
-
multiGet
-
multiGetIterator
-
multiGetKeys
-
multiGetKeysIterator
Note:
For multi-XYZ and storeXYZiterator APIs, the parentKey may be null for scanning the whole store. In this case, if the user has no required roles, an empty result set will be returned rather than throwing the UnauthorizedException.
-
storeIterator
-
storeKeysIterator
Privilege(s) required: WRITE_ANY, or DELETE_TABLE/DELETE_ANY_TABLE if accessing key-values are in tables:
-
delete
-
deleteIfVersion
-
multiDelete
Privilege(s) required: WRITE_ANY, or INSERT_TABLE/INSERT_ANY_TABLE if accessing key-values are in tables:
-
put
-
putIfAbsent
-
putIfPresent
-
putIfVersion
Privilege(s) required: DBVIEW
-
getAvroCatalog
Privilege(s) required: None:
-
getOperationFactory
-
getStats
Privilege(s) required: Union of all required roles of each single operation in the operation list:
-
execute
Privilege required depends on the privilege needed for the statement being executed:
-
execute(String statement)
-
executeSync(String statement)