Posted On: Nov 29, 2023
Amazon Redshift announces CONJUNCTION TYPE support for row-level security (RLS) policies and RLS support on standard views and late binding views, which enables you to apply granular access controls and ensure that users can only access rows that they are authorized to see, even when the underlying data evolves or user permissions change.
RLS support on standard views and late binding views applies to both local and external data including objects received through data sharing and Amazon S3 data lake. For instance, as a consumer in data sharing, you have the ability to construct late binding views atop the tables shared with you and attach RLS policies to these views. Similarly, you can establish late binding views on external data in the Amazon S3 data lake and attach RLS policies for them. Consequently, when your users execute queries on these late binding views, they will only see the subset of data they are authorized to view. CONJUNCTION TYPE allows you to combine multiple RLS policies with either AND or OR operation at table level, you can configure CONJUNCTION TYPE with ALTER TABLE command.
CONJUNCTION TYPE support for RLS policies and RLS support on standard views and late binding views is available in all commercial and AWS GovCloud (US) Regions where Amazon Redshift is available. To learn more, visit the Amazon Redshift database developer guide.