The recommended approach in Snowflake’s RBAC model is togrant privileges to roles, not to individual users or through ownership transfers. Privileges such as SELECT, INSERT, USAGE, and MODIFY are granted to roles, and roles are then assigned to users—creating scalable governance.
Transferring ownership is a powerful action and should not be used simply to provide access. The PUBLIC role should not be used to grant sensitive privileges since it is granted to all users by default. Cloning objects is unnecessary and creates new objects, not access to the original.
Thus, granting privileges to the role is the correct RBAC practice.
==================
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit