Added metastore to databricks_grants (#1447)

Author: nfx

catalog/resource_grants.go

@@ -159,27 +159,60 @@ var mapping = securableMapping{
 	"table": {
 		"MODIFY": true,
 		"SELECT": true,
+
+		// v1.0
+		"ALL_PRIVILEGES": true,
 	},
 	"view": {
 		"SELECT": true,
 	},
 	"catalog": {
 		"CREATE": true,
 		"USAGE":  true,
+
+		// v1.0
+		"ALL_PRIVILEGES": true,
+		"USE_CATALOG":    true,
+		"CREATE_SCHEMA":  true,
 	},
 	"schema": {
 		"CREATE": true,
 		"USAGE":  true,
+
+		// v1.0
+		"ALL_PRIVILEGES":           true,
+		"USE_SCHEMA":               true,
+		"CREATE_TABLE":             true,
+		"CREATE_VIEW":              true,
+		"CREATE_FUNCTION":          true,
+		"CREATE_MATERIALIZED_VIEW": true,
 	},
 	"storage_credential": {
 		"CREATE_TABLE": true,
 		"READ_FILES":   true,
 		"WRITE_FILES":  true,
+
+		// v1.0
+		"ALL_PRIVILEGES":        true,
+		"CREATE_EXTERNAL_TABLE": true,
 	},
 	"external_location": {
 		"CREATE_TABLE": true,
 		"READ_FILES":   true,
 		"WRITE_FILES":  true,
+
+		// v1.0
+		"ALL_PRIVILEGES":        true,
+		"CREATE_EXTERNAL_TABLE": true,
+	},
+	"metastore": {
+		// v1.0
+		"CREATE_CATALOG":            true,
+		"CREATE_EXTERNAL_LOCATION":  true,
+		"CREATE_STORAGE_CREDENTIAL": true,
+		"CREATE_SHARE":              true,
+		"CREATE_RECIPIENT":          true,
+		"CREATE_PROVIDER":           true,
 	},
 }
 

docs/resources/grants.md

@@ -187,6 +187,10 @@ resource "databricks_grants" "some" {
 }
 ```
 
+## Metastore grants
+
+You can grant `CREATE_CATALOG`, `CREATE_EXTERNAL_LOCATION`, `CREATE_STORAGE_CREDENTIAL`, `CREATE_SHARE`, `CREATE_RECIPIENT`, and `CREATE_PROVIDER` privileges to [databricks_metastore](metastore.md) id specified in `metastore` attribute.
+
 ## Other access control
 
 You can control Databricks General Permissions through [databricks_permissions](permissions.md) resource.