HomeServerlessSQL DatabasesHow to
Manage user permissions for Serverless SQL Databases
Update content

How to manage user permissions for Serverless SQL Databases

Reviewed on 11 August 2023Published on 11 August 2023

Permissions define the actions a user or an application can perform on a database. They are managed using Scaleway’s Identity and Access Management interface.

Security & Identity (IAM):

You may need certain IAM permissions to carry out some actions described on this page. This means:

  • you are the Owner of the Scaleway Organization in which the actions will be carried out, or
  • you are an IAM user of the Organization, with a policy granting you the necessary permission sets
Requirements:
  1. Click Identity and Access Management (IAM) from the top-right of your Organization Dashboard in the Scaleway console. The Users tab of the Identity and Access Management dashboard displays.

  2. Click the Policies tab. A list of the Organization’s existing policies displays.

  3. Click Create a policy. The policy creation wizard displays.

  4. Complete the steps of the first page of the creation wizard:

  • Enter a name for the policy.

  • Enter a description (optional).

  • Select a principal, who will be the target of your policy. The principal should be the user, application, or group who you want to give access to your database.

Important:
  • You can choose to create a policy without a principal for now, and attach the principal later.
  • The policy will have no effect until a principal is attached.
  • A policy can only be attached to one principal at a time.
  1. Click Add rules. The second screen of the policy creation wizard.

  2. Select Access to resources, then, select the Project in which you want the permissions to apply.

  3. Click Validate to continue.

  4. Select Serverless in the left-hand Products list, then, tick the permissions set you want to add to the policy:

  • ServerlessSQLDatabaseFullAccess allows the user to create and delete databases, edit their configuration, and to use the following commands:

    • SELECT
    • UPDATE
    • INSERT
    • DELETE
    • CREATE/ALTER/DROP TABLE
    • CREATE/DROP INDEX
  • ServerlessSQLDatabaseReadWrite allows the user to use the following commands:

    • SELECT
    • UPDATE
    • INSERT
    • DELETE
    • CREATE/ALTER/DROP TABLE
    • CREATE/DROP INDEX
  • ServerlessSQLDatabaseReadOnly allows the user to use the following commands:

    • SELECT
  1. Click Validate. The scope and the permission sets of your policy display.

  2. Click Create policy to finish.

See Also