Proxy Login and Execute

Allow a role to execute individual commands or all commands as another role. Typically used when users are interacting with the database through an application that authenticates the users before sending the request to the DataStax Enterprise database.

Synopsis

  • To allow a role to proxy execute and login with another role:

    GRANT PROXY.EXECUTE, PROXY.LOGIN
ON ROLE <role_name>
TO <application_role>;

  • To revoke permissions for a role with proxy execute and login access:

    REVOKE <permission_name>
ON ROLE <role_name>
FROM <application_role>;

Proxy permissions

Privilege Resource Permissions

PROXY.EXECUTE

ALL ROLES

After authenticating issue individual requests as any specified role.

PROXY.LOGIN

ROLE <role_name>

After authenticating issue all requests as any specified role.

PROXY.EXECUTE

ROLE <role_name>

After authenticating issue individual requests as a different user.

PROXY.LOGIN

ROLE <role_name>

After authenticating issue all requests as a different user.

Was this helpful?

Give Feedback

How can we improve the documentation?

© 2024 DataStax | Privacy policy | Terms of use

Apache, Apache Cassandra, Cassandra, Apache Tomcat, Tomcat, Apache Lucene, Apache Solr, Apache Hadoop, Hadoop, Apache Pulsar, Pulsar, Apache Spark, Spark, Apache TinkerPop, TinkerPop, Apache Kafka and Kafka are either registered trademarks or trademarks of the Apache Software Foundation or its subsidiaries in Canada, the United States and/or other countries. Kubernetes is the registered trademark of the Linux Foundation.

General Inquiries: +1 (650) 389-6000, info@datastax.com