Sharing & Permissions
Catalog assets — tables, schemas, and datasets — can have their visibility and access controlled per user or group. Owners can grant or revoke permissions directly from the Catalog UI.
Services Behind This Feature
| Service | Role |
|---|---|
| BFF API | Handles permission assignment requests from the Cogrion UI. |
| Ranger | Stores and evaluates the access policies attached to catalog assets. |
| Keycloak | Resolves users and groups when assigning permissions. |
Go Deeper
- Data Access Management — manage Ranger policies in the UI
- Data Access and Authorization — overview of the auth model
- Keycloak → Ranger Role Sync — how role assignments flow into Ranger
- SQL Auth: Superset, Trino & Ranger — how policies are enforced at query time