Know Your Snowflake Admin

Before DevOps and the associated glamor, DevOps was done by a Systems Administrator.

https://www.gnu.org/fun/jokes/know.your.sysadmin.en.html

FYI: MOTAS means Members of the Attractive Sex

SITUATION: Set Up a Role for a Snowflake Stage Account

* Technical Thug: Uses CloudFormation. Throws it away and uses Terraform.

* Administrative Fascist: Uses AWS Console, because she's the only one with access. Creates a read-only access point to a database where only she can access. Follows the best practices and sets up a storage integration with no password. Denies access to all users. https://docs.snowflake.com/en/user-guide/data-load-s3-config.html

* Maniac: Uses Terraform.

* Idiot: Uses Stackoverflow.

{
    "Id": "...",
    "Statement": [ {
        "Sid": "...",
        "Action": [
            "s3:PutObject",
            "s3:GetObject",
            "s3:GetObjectVersion",  
            "s3:DeleteObject", 
            "s3:DeleteObjectVersion"
        ],
        "Effect": "Allow",
        "Resource": "arn:aws:s3:::bucket/*",
        "Principal": {
            "AWS": [ "*" ]
        }
    } ]
}