Add snowflake_grant_service_role resource

[awilliamsOM1]

Company Name

No response

Use Cases or Problem Statement

In Snowpark Container Services (SPCS), in order to allow multiple roles to use a service endpoint a service role grant must be used. Without the ability to create these grants, only the service owner role can access the endpoints.

This grant looks like `grant service role ! to role ' . Full documentation on the grant can be found at https://docs.snowflake.com/en/sql-reference/sql/grant-service-role .

Category

category:grants

Object type(s)

resource:service

Proposal

I think implementation of this snowflake_grant_service_role resource should be very similar to snowflake_grant_application_role. https://registry.terraform.io/providers/snowflakedb/snowflake/latest/docs/resources/grant_account_role .

Please make sure it supports the default ALL_ENDPOINTS_USAGE service role and any service roles defined in the service specification

Additional Information

No response

Would you like to implement a fix?

• Yeah, I'll take it 😎

[sfc-gh-kwasilewski]

Hi @awilliamsOM1 👋

Thanks for reporting this feature request. I added this to our internal list, as this is not currently on the roadmap. As a workaround, please use the execute resource.