CREATE/REPLACE AUTHORIZATION SQL Statements | Teradata Vantage - CREATE AUTHORIZATION and REPLACE AUTHORIZATION - Advanced SQL Engine - Teradata Database

SQL Data Definition Language Syntax and Examples

Product
Advanced SQL Engine
Teradata Database
Release Number
17.05
Published
January 2021
Language
English (United States)
Last Update
2021-01-22
dita:mapPath
ncd1596241368722.ditamap
dita:ditavalPath
hoy1596145193032.ditaval
dita:id
B035-1144
lifecycle
previous
Product Category
Teradata Vantage™

Creates or replaces an authorization object.

An authorization object associates a database user with an OS platform user identification, allowing an external routine to run in secure mode using the context, privileges, and access control granted to the specified OS user.

External routines include UDFs, table UDFs, methods, and external SQL procedures. See CREATE FUNCTION and REPLACE FUNCTION (External Form), CREATE FUNCTION and REPLACE FUNCTION (Table Form), CREATE METHOD, and CREATE PROCEDURE and REPLACE PROCEDURE (External Form).

You specify an authorization in the external security clause of a foreign table or function mapping. See CREATE FOREIGN TABLE or CREATE FUNCTION MAPPING and REPLACE FUNCTION MAPPING.

For information about the CREATE AUTHORIZATION trusted extensions that you use to access remote systems with QueryGrid, see your Teradata QueryGrid documentation.

You can specify DEFINER or INVOKER, but not both.

ANSI Compliance

CREATE AUTHORIZATION is a Teradata extension to the ANSI SQL:2011 standard.

Required Privileges

You must have either the CREATE/REPLACE AUTHORIZATION or AUTHORIZATION privilege to perform the CREATE/REPLACE AUTHORIZATION statement.

Privileges Granted Automatically

DROP AUTHORIZATION to the creator of the authorization.