Learn about LOCATION objects in Firebolt for secure, centralized credential management.
READ_CSV
and READ_PARQUET
require that all files in the specified location match the expected format. If the URL defined in the location contains files of different types, you must create separate locations for each file type.
LOCATION
objects are managed using RBAC with the following permission levels. For detailed information about location permissions, see Location permissions.
Privilege | Applicable On | Description | GRANT Syntax | REVOKE Syntax |
---|---|---|---|---|
MODIFY | Location | Allows editing specific location objects. | GRANT MODIFY ON LOCATION <location_name> TO <role>; | REVOKE MODIFY ON LOCATION <location_name> FROM <role>; |
USAGE | Location | Allows using specific location objects without seeing credentials. | GRANT USAGE ON LOCATION <location_name> TO <role>; | REVOKE USAGE ON LOCATION <location_name> FROM <role>; |
CREATE LOCATION | Account | Allows creating new location objects in the account. | GRANT CREATE LOCATION ON ACCOUNT <account_name> TO <role>; | REVOKE CREATE LOCATION ON ACCOUNT <account_name> FROM <role>; |
MODIFY ANY LOCATION | Account | Allows editing all current and future locations in the account. | GRANT MODIFY ANY LOCATION ON ACCOUNT <account_name> TO <role>; | REVOKE MODIFY ANY LOCATION ON ACCOUNT <account_name> FROM <role>; |
USAGE ANY LOCATION | Account | Allows using all current and future locations in the account. | GRANT USAGE ANY LOCATION ON ACCOUNT <account_name> TO <role>; | REVOKE USAGE ANY LOCATION ON ACCOUNT <account_name> FROM <role>; |
MODIFY
- Modify locations you have access toUSAGE
- Use locations you have access to