Each object has an owner, who can in turn grant access to that object. To own an object means that a role has the OWNERSHIP privilege on the object. Each securable object is owned by a single role, which by default is the role used to create the object. When this role is assigned to users, they effectively have shared control over the object. In a regular schema, the owner role has all privileges on the object by default, including the ability to grant or revoke privileges on the object to other roles.
https://docs.snowflake.com/en/user-guide/security-access-control-overview
True.
In Snowflake, when a new object (like a table, view, schema, etc.) is created, it is automatically owned by the user (or more precisely, the role) that created it.
Ownership includes full control over the object, including the ability to:
Grant privileges to other roles,
Modify or drop the object,
Transfer ownership.
Any objects created after the command is issued are owned by the role in use when the object is created.
https://docs.snowflake.com/en/sql-reference/sql/grant-ownership#
To own an object means that a role has the OWNERSHIP privilege on the object. Each securable object is owned by a single role, which by default is the role used to create the object. When this role is assigned to users, they effectively have shared control over the object. In a regular schema, the owner role has all privileges on the object by default, including the ability to grant or revoke privileges on the object to other roles. In addition, ownership can be transferred from one role to another
https://docs.snowflake.com/en/user-guide/security-access-control-overview#securable-objects
It's an ambiguous question, if was
... automatically and "exclusively" owned by the user who created it.
Then is sure B but in this way, as long as that user has that role, he has the ownersiph of the objet can alter it and even drop it.
Can we assume a user as a credential you log in with & role is what you privilege to do
Also can we assume an object created by a role can be accessible to all users under the same role?
Discretionary Access Control (DAC): Each object has an owner, who can in turn grant access to that object.
Role-based Access Control (RBAC): Access privileges are assigned to roles, which are in turn assigned to users.
https://docs.snowflake.com/en/user-guide/security-access-control-overview.html
Each object has an owner, who can in turn grant access to that object. To own an object means that a role has the OWNERSHIP privilege on the object. Each securable object is owned by a single role, which by default is the role used to create the object. When this role is assigned to users, they effectively have shared control over the object. In a regular schema, the owner role has all privileges on the object by default, including the ability to grant or revoke privileges on the object to other roles.
https://docs.snowflake.com/en/user-guide/security-access-control-overview
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Surbin
Highly Voted 3 years, 3 months agoc0d3g
Highly Voted 2 years, 4 months agojeny12138
Most Recent 3 months, 2 weeks ago56d43d6
6 months, 3 weeks agoMallikharjuna452
1 year agoKnightVictor
2 years, 1 month agoMayuri917233
2 years, 2 months agoisolated_sniper
2 years, 2 months agoBagvi
2 years, 3 months agoRaju039
2 years, 4 months agoalloshz11
2 years, 5 months agoMultiCloudIronMan
2 years, 5 months agoKarBiswa
2 years, 5 months agoBigDataBB
2 years, 6 months agoBala1802
2 years, 6 months agoSV1122
2 years, 6 months agoc0d3g
2 years, 4 months agobaig123
2 years, 7 months ago