Improved streaming roles and access discussion

I had a usecase I was hoping to use streaming for. I’m doing some document processing in the cloud and wanted the user to be kept up to date on the status of their processed documents. Unfortunately there is no way to limit the information they receive about the documents being streamed to them. It’s either all or nothing in terms of access. Usually I’d use a UDF assigned to a privileged role to project the results and return them to the user. But if I want a document to be streamed to a user, I have to give them read access to that document so there’s no way to limit which fields in that document they get.

If there was a stream privilege that is separate from read so that the user can receive streamed documents without being able to access them independently that would work.

Alternatively if a UDF could define stream access permissions at runtime when creating that stream that could work too.

Hi @wallslide, thanks for this ask. We’ll look into adding this level of access control.

1 Like