Table: turbot_active_grant
An active grant is the assignment of a permission to a Turbot user or group on a resource or resource group which is active.
The turbot_active_grant table will only return active grants. Use the turbot_grant table to get a list of all grants.
Examples
Basic info
select grant_id, identity_status, identity_email, identity_profile_id, identity_trunk_title, level_title, resource_trunk_titlefrom turbot_active_grant;List active grants for an identity
select grant_id, identity_status, identity_email, identity_trunk_title, level_title, resource_trunk_titlefrom turbot_active_grantwhere identity_email = 'abc@gmail.com'List active grants for inactive identities
select grant_id, identity_status, identity_email, level_title, resource_trunk_titlefrom turbot_active_grantwhere identity_status = 'Inactive'List inactive grants
select grant_id, identity_email, level_title, level_trunk_title, level_uri, resource_trunk_title, resource_type_trunk_titlefrom turbot_grantwhere grant_id not in ( select grant_id from turbot_active_grant );Schema for turbot_active_grant
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. | |
| create_timestamp | timestamp with time zone | The create time of the grant. | |
| filter | text | Filter used for this grant list. | |
| grant_id | bigint | = | Unique identifier of the grant. |
| identity_akas | jsonb | AKA (also known as) identifiers for the identity | |
| identity_display_name | text | Display name of the identity. | |
| identity_email | text | Email identity for the identity. | |
| identity_family_name | text | Family name of the identity. | |
| identity_given_name | text | Given name of the identity. | |
| identity_last_login_timestamp | timestamp with time zone | Last login timestamp. | |
| identity_profile_id | text | Profile id of the identity. | |
| identity_status | text | Status of the identity. | |
| identity_trunk_title | text | Full title (including ancestor trunk) of the grant identity. | |
| level_title | text | The title of the level. | |
| level_trunk_title | text | Full title (including ancestor trunk) of the level. | |
| level_uri | text | The URI of the level. | |
| resource_id | bigint | Unique identifier of the resource. | |
| resource_trunk_title | text | Full title (including ancestor trunk) of the resource. | |
| resource_type_trunk_title | text | Full title (including ancestor trunk) of the grant type. | |
| resource_type_uri | text | URI of the resource type. | |
| timestamp | timestamp with time zone | Timestamp when the grant was last modified (created, updated or deleted). | |
| update_timestamp | timestamp with time zone | When the grant was last updated in Turbot. | |
| version_id | bigint | Unique identifier for this version of the identity. | |
| workspace | text | Specifies the workspace URL. |