Venkata Gowri Sai Rakesh Kumar Varanasi vvgsrk
vvgsrk
/ attach_masking_policies_to_tag_customer.sql
Last active
July 7, 2024 09:37
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| USE ROLE TAG_ADMIN; | |
| ALTER TAG dp_governance.tags.customer_sensitive | |
| SET MASKING POLICY dp_governance.masking_policies.string_mask_customer, | |
| MASKING POLICY dp_governance.masking_policies.timestamp_mask_customer, | |
| MASKING POLICY dp_governance.masking_policies.date_mask_customer | |
| ; |
vvgsrk
/ create_masking_policies_for_employee.sql
Last active
July 7, 2024 09:31
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| USE ROLE MASKING_ADMIN; | |
| CREATE OR REPLACE MASKING POLICY dp_governance.masking_policies.string_mask_employee AS (val STRING) RETURNS STRING -> | |
| CASE | |
| WHEN EXISTS (SELECT 1 FROM TABLE(SPLIT_TO_TABLE(SYSTEM$GET_TAG('dp_governance.tags.employee_sensitive', dp_governance.tags.get_current_user(), 'user'), ',')) WHERE value = 'compensation') and SYSTEM$GET_TAG_ON_CURRENT_COLUMN('dp_governance.tags.employee_sensitive') = 'compensation' THEN val | |
| WHEN EXISTS (SELECT 1 FROM TABLE(SPLIT_TO_TABLE(SYSTEM$GET_TAG('dp_governance.tags.employee_sensitive', dp_governance.tags.get_current_user(), 'user'), ',')) WHERE value = 'payroll') and SYSTEM$GET_TAG_ON_CURRENT_COLUMN('dp_governance.tags.employee_sensitive') = 'payroll' THEN val | |
| WHEN EXISTS (SELECT 1 FROM TABLE(SPLIT_TO_TABLE(SYSTEM$GET_TAG('dp_governance.tags.technical_user', dp_governance.tags.get_current_user(), 'user'), ',')) WHERE value = 'ServiceAccount') THEN val | |
| ELSE '***MASKED***' | |
| END | |
| COMMENT = 'String masking policy for employee experience sensi |
vvgsrk
/ create_masking_policies_for_customer.sql
Last active
July 7, 2024 09:29
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| USE ROLE MASKING_ADMIN; | |
| CREATE OR REPLACE MASKING POLICY dp_governance.masking_policies.string_mask_customer AS (val STRING) RETURNS STRING -> | |
| CASE | |
| WHEN EXISTS (SELECT 1 FROM TABLE(SPLIT_TO_TABLE(SYSTEM$GET_TAG('dp_governance.tags.customer_sensitive', dp_governance.tags.get_current_user(), 'user'), ',')) WHERE value = 'customer-survey') and SYSTEM$GET_TAG_ON_CURRENT_COLUMN('dp_governance.tags.customer_sensitive') = 'customer-survey' THEN val | |
| WHEN EXISTS (SELECT 1 FROM TABLE(SPLIT_TO_TABLE(SYSTEM$GET_TAG('dp_governance.tags.customer_sensitive', dp_governance.tags.get_current_user(), 'user'), ',')) WHERE value = 'customer-loyalty') and SYSTEM$GET_TAG_ON_CURRENT_COLUMN('dp_governance.tags.customer_sensitive') = 'customer-loyalty' THEN val | |
| WHEN EXISTS (SELECT 1 FROM TABLE(SPLIT_TO_TABLE(SYSTEM$GET_TAG('dp_governance.tags.technical_user', dp_governance.tags.get_current_user(), 'user'), ',')) WHERE value = 'ServiceAccount') THEN val | |
| ELSE '***MASKED***' | |
| END | |
| COMMENT = 'String masking policy for c |
vvgsrk
/ create_tags_ex.sql
Last active
July 7, 2024 09:43
vvgsrk
/ generate_alter_statements_to_tag_columns.sql
Last active
July 10, 2024 18:15
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| SELECT 'ALTER TABLE IF EXISTS ' || LOWER(table_catalog) || '.' || LOWER(table_schema) || '.' || LOWER(table_name) || ' MODIFY COLUMN ' || LOWER(column_name) || ' SET TAG ' || ' dp_governance.tags.customer_sensitive = ''add_source_name'';' AS set_statement, | |
| 'ALTER TABLE IF EXISTS ' || LOWER(table_catalog) || '.' || LOWER(table_schema) || '.' || LOWER(table_name) || ' MODIFY COLUMN ' || LOWER(column_name) || ' UNSET TAG ' || ' dp_governance.tags.customer_sensitive;' AS unset_statement | |
| FROM dp_dev.information_schema.columns | |
| WHERE table_name = 'TABLE_NAME_X' | |
| AND column_name IN ('COLUMN_NAME_1', 'COLUMN_NAME_2', 'COLUMN_NAME_3') | |
| ; |
vvgsrk
/ source_name_tag_based_masking_policies_unset.sql
Last active
July 7, 2024 09:44
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -- Devlopment | |
| USE ROLE dp_owner_dev; | |
| /* | |
| Table: schema_name.table_name | |
| Columns: | |
| column_name_1 | |
| column_name_2 |
vvgsrk
/ source_name_tag_based_masking_policies_set.sql
Last active
July 7, 2024 09:45
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| -- Devlopment | |
| USE ROLE dp_owner_dev; | |
| /* | |
| Table: schema_name.table_name | |
| Columns: | |
| column_name_1 | |
| column_name_2 |
vvgsrk
/ naming_conventions_for_masking_policies_in_snowflake.csv
Last active
July 8, 2024 05:14
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Masking Policy | Example | Role Name | |
|---|---|---|---|
| <DATA_TYPE>_MASK_<BUSINESS_UNIT_NAME> | NUMBER_MASK_EMPLOYEE | STRING_MASK_EMPLOYEE | DATE_MASK_EMPLOYEE | MASKING_ADMIN | |
| <COLUMN_TYPE>_MASK_<BUSINESS_UNIT_NAME> | EMAIL_MASK_CUSTOMER | DOB_MASK_CUSTOMER | NAME_MASK_CUSTOMER | MASKING_ADMIN |
vvgsrk
/ naming_conventions_for_tags_in_snowflake.csv
Last active
July 7, 2024 09:19