GRANTS_TO_ROLES View¶

This Account Usage view can be used to query access control privileges that have been granted to a role.

Columns¶

Column Name	Data Type	Description
CREATED_ON	TIMESTAMP_LTZ	Date and time (in the UTC time zone) when the privilege is granted to the role.
MODIFIED_ON	TIMESTAMP_LTZ	Date and time (in the UTC time zone) when the privilege is updated.
PRIVILEGE	VARCHAR	Name of the privilege added to the role.
GRANTED_ON	VARCHAR	Object on which the privilege is granted.
NAME	VARCHAR	Name of the object on which the privilege is granted.
TABLE_CATALOG	VARCHAR	Name of the database for the current table or the name of the database that stores the instance of a class.
TABLE_SCHEMA	VARCHAR	Name of the schema for the current table or the name of the schema that stores the instance of a class.
GRANTED_TO	VARCHAR	Either `ROLE`, `DATABASE_ROLE`, or `INSTANCE_ROLE`.
GRANTEE_NAME	VARCHAR	Identifier for the recipient role (i.e. the role to which the privilege is granted).
GRANT_OPTION	BOOLEAN	`TRUE / FALSE`. If set to `TRUE`, the recipient role can grant the privilege to other roles.
GRANTED_BY	VARCHAR	Identifier for the role that granted the privilege.
DELETED_ON	TIMESTAMP_LTZ	Date and time (in the UTC time zone) when the privilege is revoked.
GRANTED_BY_ROLE_TYPE	VARCHAR	Either `ROLE` or `DATABASE_ROLE`.
OBJECT_INSTANCE	VARCHAR	The fully-qualified name of the object that contains the instance role for a particular class in the format `database.schema.class`.