yandex_trino_access_control (Data Source)
Written by
Updated at September 26, 2025
- Example usage
- Schema
- Required
- Optional
- Read-Only
- Nested Schema for timeouts
- Nested Schema for catalog_session_properties
- Nested Schema for catalog_session_properties.catalog
- Nested Schema for catalog_session_properties.property
- Nested Schema for catalogs
- Nested Schema for catalogs.catalog
- Nested Schema for functions
- Nested Schema for functions.catalog
- Nested Schema for functions.function
- Nested Schema for functions.schema
- Nested Schema for procedures
- Nested Schema for procedures.catalog
- Nested Schema for procedures.procedure
- Nested Schema for procedures.schema
- Nested Schema for queries
- Nested Schema for schemas
- Nested Schema for schemas.catalog
- Nested Schema for schemas.schema
- Nested Schema for system_session_properties
- Nested Schema for system_session_properties.property
- Nested Schema for tables
- Nested Schema for tables.catalog
- Nested Schema for tables.columns
- Nested Schema for tables.schema
- Nested Schema for tables.table
Access control configuration for Trino cluster.
Example usage
//
// Get information about Trino access control by cluster ID.
//
data "yandex_trino_catalog" "trino_access_control" {
cluster_id = yandex_trino_cluster.trino.id
}
Schema
Required
cluster_id(String) ID of the Trino cluster. Provided by the client when the Access Control is created.
Optional
timeouts(Block, Optional) (see below for nested schema)
Read-Only
catalog_session_properties(Attributes List) Catalog session property access control rules. (see below for nested schema)catalogs(Attributes List) Catalog access control rules. (see below for nested schema)functions(Attributes List) Function access control rules. (see below for nested schema)procedures(Attributes List) Procedure access control rules. (see below for nested schema)queries(Attributes List) Query access control rules. (see below for nested schema)schemas(Attributes List) Schema access control rules. (see below for nested schema)system_session_properties(Attributes List) System session property access control rules. (see below for nested schema)tables(Attributes List) Table access control rules. (see below for nested schema)
Nested Schema for timeouts
Optional:
read(String) A string that can be parsed as a duration consisting of numbers and unit suffixes, such as "30s" or "2h45m". Valid time units are "s" (seconds), "m" (minutes), "h" (hours). Read operations occur during any refresh or planning operation when refresh is enabled.
Nested Schema for catalog_session_properties
Read-Only:
allow(String) Whether the rule allows setting the property. Valid values:NO,YEScatalog(Attributes) Catalog matcher specifying what catalogs the rule is applied to. (see below for nested schema)description(String) Rule description.groups(List of String) IAM group IDs the rule is applied to.property(Attributes) Matcher specifying what properties the rule is applied to. (see below for nested schema)users(List of String) IAM user IDs the rule is applied to.
Nested Schema for catalog_session_properties.catalog
Read-Only:
ids(List of String) Catalog IDs rule is applied to.name_regexp(String) Catalog name regexp the rule is applied to.
Nested Schema for catalog_session_properties.property
Read-Only:
name_regexp(String) Property name regexp the rule is applied to.names(List of String) Property names rule is applied to.
Nested Schema for catalogs
Read-Only:
catalog(Attributes) Catalog matcher specifying what catalogs the rule is applied to. (see below for nested schema)description(String) Rule description.groups(List of String) IAM group IDs the rule is applied to.permission(String) Permission granted by the rule. Valid values:NONE,READ_ONLY,ALLusers(List of String) IAM user IDs the rule is applied to.
Nested Schema for catalogs.catalog
Read-Only:
ids(List of String) Catalog IDs rule is applied to.name_regexp(String) Catalog name regexp the rule is applied to.
Nested Schema for functions
Read-Only:
catalog(Attributes) Catalog matcher specifying what catalogs the rule is applied to. (see below for nested schema)description(String) Rule description.function(Attributes) Matcher specifying what functions the rule is applied to. (see below for nested schema)groups(List of String) IAM group IDs the rule is applied to.privileges(List of String) Privileges granted by the rule. Valid values:EXECUTE,GRANT_EXECUTE,OWNERSHIP.schema(Attributes) Matcher specifying what Schemas the rule is applied to. (see below for nested schema)users(List of String) IAM user IDs the rule is applied to.
Nested Schema for functions.catalog
Read-Only:
ids(List of String) Catalog IDs rule is applied to.name_regexp(String) Catalog name regexp the rule is applied to.
Nested Schema for functions.function
Read-Only:
name_regexp(String) Function name regexp the rule is applied to.names(List of String) Function names rule is applied to.
Nested Schema for functions.schema
Read-Only:
name_regexp(String) Schema name regexp the rule is applied to.names(List of String) Schema names rule is applied to.
Nested Schema for procedures
Read-Only:
catalog(Attributes) Catalog matcher specifying what catalogs the rule is applied to. (see below for nested schema)description(String) Rule description.groups(List of String) IAM group IDs the rule is applied to.privileges(List of String) Privileges granted by the rule. Valid values:EXECUTE.procedure(Attributes) Matcher specifying what procedures the rule is applied to. (see below for nested schema)schema(Attributes) Matcher specifying what Schemas the rule is applied to. (see below for nested schema)users(List of String) IAM user IDs the rule is applied to.
Nested Schema for procedures.catalog
Read-Only:
ids(List of String) Catalog IDs rule is applied to.name_regexp(String) Catalog name regexp the rule is applied to.
Nested Schema for procedures.procedure
Read-Only:
name_regexp(String) Procedure name regexp the rule is applied to.names(List of String) Procedure names rule is applied to.
Nested Schema for procedures.schema
Read-Only:
name_regexp(String) Schema name regexp the rule is applied to.names(List of String) Schema names rule is applied to.
Nested Schema for queries
Read-Only:
description(String) Rule description.groups(List of String) IAM group IDs the rule is applied to.privileges(List of String) Privileges granted by the rule. Valid values:VIEW,EXECUTE,KILL.query_owners(List of String) Owners of queries the rule is applied to.users(List of String) IAM user IDs the rule is applied to.
Nested Schema for schemas
Read-Only:
catalog(Attributes) Catalog matcher specifying what catalogs the rule is applied to. (see below for nested schema)description(String) Rule description.groups(List of String) IAM group IDs the rule is applied to.owner(String) Ownership granted by the rule. Valid values:NO,YESschema(Attributes) Matcher specifying what schemas the rule is applied to. (see below for nested schema)users(List of String) IAM user IDs the rule is applied to.
Nested Schema for schemas.catalog
Read-Only:
ids(List of String) Catalog IDs rule is applied to.name_regexp(String) Catalog name regexp the rule is applied to.
Nested Schema for schemas.schema
Read-Only:
name_regexp(String) Schema name regexp the rule is applied to.names(List of String) Schema names rule is applied to.
Nested Schema for system_session_properties
Read-Only:
allow(String) Whether the rule allows setting the property. Valid values:NO,YESdescription(String) Rule description.groups(List of String) IAM group IDs the rule is applied to.property(Attributes) Matcher specifying what properties the rule is applied to. (see below for nested schema)users(List of String) IAM user IDs the rule is applied to.
Nested Schema for system_session_properties.property
Read-Only:
name_regexp(String) Property name regexp the rule is applied to.names(List of String) Property names rule is applied to.
Nested Schema for tables
Read-Only:
catalog(Attributes) Catalog matcher specifying what catalogs the rule is applied to. (see below for nested schema)columns(Attributes List) Column rules. (see below for nested schema)description(String) Rule description.filter(String) Boolean SQL expression to filter table rows for particular user.groups(List of String) IAM group IDs the rule is applied to.privileges(List of String) Privileges granted by the rule. Valid values:SELECT,INSERT,DELETE,UPDATE,OWNERSHIP,GRANT_SELECT.schema(Attributes) Matcher specifying what Schemas the rule is applied to. (see below for nested schema)table(Attributes) Matcher specifying what tables the rule is applied to. (see below for nested schema)users(List of String) IAM user IDs the rule is applied to.
Nested Schema for tables.catalog
Read-Only:
ids(List of String) Catalog IDs rule is applied to.name_regexp(String) Catalog name regexp the rule is applied to.
Nested Schema for tables.columns
Read-Only:
access(String) Column access mode. Valid values:NONE,ALLmask(String) SQL expression mask to evaluate instead of original column values.name(String) Column name.
Nested Schema for tables.schema
Read-Only:
name_regexp(String) Schema name regexp the rule is applied to.names(List of String) Schema names rule is applied to.
Nested Schema for tables.table
Read-Only:
name_regexp(String) Table name regexp the rule is applied to.names(List of String) Table names rule is applied to.