Skip to main content

Security

This application is built using Snowflake's Native Apps Framework and is therefore secure by design.

mpmX requires several account-level and reference privileges to function, namely:

GRANT EXECUTE TASK
GRANT USAGE ON WAREHOUSE

to update the mining model in the background and

GRANT SELECT ON TABLE
GRANT SELECT ON VIEW

to gain access to your data sources.

There is no need to grant these privileges via SQL, as the application will guide you through the initial setup. Depending on your application usage, mpmX creates several application roles that you can use for granular access control:

  • OWNER - Grants full access. ¹

  • APPLICATION_ADMIN → Can open the application and create or edit any process scenario. ²

  • <PROCESS>_ADMIN → Can open the application and edit the <PROCESS> process scenario, including the mining parameters. ²

  • <PROCESS>_DATA_CONSUMER → Can read the computed mining model for the <PROCESS> process scenario. ²

¹ Automatically assigned when the application is installed.
² Must be manually assigned via Snowsight or a SQL command.