Skip to content

[FEATURE] Read only / Limited access to Accounts API #1229

New issue
New issue
Open
Open
[FEATURE] Read only / Limited access to Accounts API#1229
@istairbn

Description

@istairbn
istairbn
opened on Jun 4, 2025

Problem Statement

I have a set of Service Principals. I need to create/delete the secrets as [per this API[(https://docs.databricks.com/api/account/serviceprincipalsecrets/create).

The user making this API call should only be able to amend the secret for a Service Principal it is the Manager of (i.e. should not be full admin of the Databricks account)

However, I can't use the API without giving the user.... full access to the Databricks account. Which is insecure.

Proposed Solution

  • Read Only Access to the Databricks Accounts API
  • Allow secret create/delete for a user who is the Manager of the Service Principal

Additional Context
There are many many many other reasons a user may need access to the Accounts API without giving them full admin rights.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions