Authorization
At the core of secure data management, CrateDB employs Role-Based Access Control (RBAC). This system is designed to manage user access and privileges throughout our database platform effectively. In the RBA strategy for role allocation, each role is assigned specific privileges. These privileges define the level of access to various resources within CrateDB.
CrateDB recognizes four types of privileges that can be assigned to users and roles:- Data Query Language (DQL) privilege: This allows users/roles to execute SELECT, SHOW, REFRESH, and COPY TO statements. Additionally, it enables the use of available user-defined functions on the specified objects.
- Data Manipulation Language (DML) privilege: It grants users/roles the power to execute INSERT, COPY FROM, UPDATE, and DELETE statements on the specified objects.
- Data Definition Language (DDL) privilege: This privilege allows users/roles to execute statements for creating, altering, and deleting tables, views, functions, repositories, and snapshots.
- Administration Language (AL) privilege: This capability grants users/roles the ability to create and drop users.
Learn more about CrateDB's dedication to information security on the Security page >
CrateDB Architecture Guide
This comprehensive guide covers all the key concepts you need to know about CrateDB's architecture. It will help you gain a deeper understanding of what makes it performant, scalable, flexible and easy to use. Armed with this knowledge, you will be better equipped to make informed decisions about when to leverage CrateDB for your data projects.
