top of page
Search
  • Writer's pictureTim Burns
    • Oct 25, 2020
    • 1 min read

Know Your Snowflake Admin

Before DevOps and the associated glamor, DevOps was done by a Systems Administrator.


https://www.gnu.org/fun/jokes/know.your.sysadmin.en.html


FYI: MOTAS means Members of the Attractive Sex


SITUATION: Set Up a Role for a Snowflake Stage Account

* Technical Thug: Uses CloudFormation. Throws it away and uses Terraform.


* Administrative Fascist: Uses AWS Console, because she's the only one with access. Creates a read-only access point to a database where only she can access. Follows the best practices and sets up a storage integration with no password. Denies access to all users. https://docs.snowflake.com/en/user-guide/data-load-s3-config.html


* Maniac: Uses Terraform.


* Idiot: Uses Stackoverflow.



{
    "Id": "...",
    "Statement": [ {
        "Sid": "...",
        "Action": [
            "s3:PutObject",
            "s3:GetObject",
            "s3:GetObjectVersion",  
            "s3:DeleteObject", 
            "s3:DeleteObjectVersion"
        ],
        "Effect": "Allow",
        "Resource": "arn:aws:s3:::bucket/*",
        "Principal": {
            "AWS": [ "*" ]
        }
    } ]
}

18 views0 comments
bottom of page