projectnessie / nessie

Nessie: Transactional Catalog for Data Lakes with Git-like semantics
https://projectnessie.org
Apache License 2.0
1.03k stars 129 forks source link

[Feature]: Support User Impersonation for Iceberg REST Catalog #9570

Open nqvuong1998 opened 1 month ago

nqvuong1998 commented 1 month ago

Description

User Impersonation enables the REST catalog to perform actions on behalf of a specified user. This feature allows clients to impersonate users when interacting with the Iceberg catalog, ensuring that actions are executed with the appropriate user permissions. It enhances security by allowing fine-grained access control, enabling the system to enforce authorization policies based on the impersonated user's identity. This is particularly useful in multi-tenant environments where different users or applications may require different levels of access to data stored in Iceberg tables.

Expected Use Cases

Same as Hive Metastore:

Requested Changes in public API

No response

nqvuong1998 commented 1 month ago

cc @snazy @ajantha-bhat