Skip to main content

Setup

Follow the Polaris catalog integration setup to connect your catalog to Ryft. Then, create a dedicated service principal for access management with CATALOG_MANAGE_ACCESS on the catalog - this allows Ryft to read and manage catalog role assignments. Once created, share the following with your Ryft representative:
  • Client ID and Client Secret of the new service principal
  • Warehouse (Catalog name)

Supported Engines

The following query engines support per-user identity forwarding to Polaris:

Prerequisites

Principal Roles & Principals Sync

Polaris uses principal roles to represent groups - each principal role maps to a corresponding IdP group. For Ryft to enforce access policies, the principal roles referenced by those policies must already exist in Polaris, mapped to any principals (users) in sync with the IdP.