trinodb
diff --git a/‎core/trino-main/src/main/java/io/trino/execution/CreateViewTask.java‎
Lines changed: 3 additions & 1 deletion b/‎core/trino-main/src/main/java/io/trino/execution/CreateViewTask.java‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎core/trino-main/src/main/java/io/trino/security/AccessControl.java‎
Lines changed: 2 additions & 1 deletion b/‎core/trino-main/src/main/java/io/trino/security/AccessControl.java‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎core/trino-main/src/main/java/io/trino/security/AccessControlManager.java‎
Lines changed: 4 additions & 3 deletions b/‎core/trino-main/src/main/java/io/trino/security/AccessControlManager.java‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎core/trino-main/src/main/java/io/trino/security/AllowAllAccessControl.java‎
Lines changed: 2 additions & 1 deletion b/‎core/trino-main/src/main/java/io/trino/security/AllowAllAccessControl.java‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎core/trino-main/src/main/java/io/trino/security/DenyAllAccessControl.java‎
Lines changed: 2 additions & 1 deletion b/‎core/trino-main/src/main/java/io/trino/security/DenyAllAccessControl.java‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎core/trino-main/src/main/java/io/trino/security/ForwardingAccessControl.java‎
Lines changed: 3 additions & 2 deletions b/‎core/trino-main/src/main/java/io/trino/security/ForwardingAccessControl.java‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎core/trino-main/src/main/java/io/trino/security/InjectedConnectorAccessControl.java‎
Lines changed: 3 additions & 2 deletions b/‎core/trino-main/src/main/java/io/trino/security/InjectedConnectorAccessControl.java‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎core/trino-main/src/main/java/io/trino/sql/analyzer/StatementAnalyzer.java‎
Lines changed: 3 additions & 1 deletion b/‎core/trino-main/src/main/java/io/trino/sql/analyzer/StatementAnalyzer.java‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎core/trino-main/src/main/java/io/trino/testing/TestingAccessControlManager.java‎
Lines changed: 3 additions & 2 deletions b/‎core/trino-main/src/main/java/io/trino/testing/TestingAccessControlManager.java‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎core/trino-main/src/main/java/io/trino/tracing/TracingAccessControl.java‎
Lines changed: 3 additions & 2 deletions b/‎core/trino-main/src/main/java/io/trino/tracing/TracingAccessControl.java‎
Lines changed: 3 additions & 2 deletions
@@ -26,6 +26,7 @@
 import io.trino.metadata.ViewPropertyManager;
 import io.trino.security.AccessControl;
 import io.trino.spi.security.Identity;
+import io.trino.spi.security.ViewSecurity;
 import io.trino.sql.PlannerContext;
 import io.trino.sql.analyzer.Analysis;
 import io.trino.sql.analyzer.AnalyzerFactory;
@@ -92,8 +93,9 @@ public ListenableFuture<Void> execute(
 
         Session session = stateMachine.getSession();
         QualifiedObjectName name = createQualifiedObjectName(session, statement, statement.getName());
+        Optional<ViewSecurity> security = statement.getSecurity().map(sec -> ViewSecurity.valueOf(sec.name()));
 
-        accessControl.checkCanCreateView(session.toSecurityContext(), name);
+        accessControl.checkCanCreateView(session.toSecurityContext(), name, security);
 
         if (metadata.isMaterializedView(session, name)) {
             throw semanticException(TABLE_ALREADY_EXISTS, statement, "Materialized view already exists: '%s'", name);
 
@@ -29,6 +29,7 @@
 import io.trino.spi.security.Privilege;
 import io.trino.spi.security.TrinoPrincipal;
 import io.trino.spi.security.ViewExpression;
+import io.trino.spi.security.ViewSecurity;
 
 import java.security.Principal;
 import java.util.Collection;
@@ -313,7 +314,7 @@ public interface AccessControl
      *
      * @throws AccessDeniedException if not allowed
      */
-    void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName);
+    void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security);
 
     /**
      * Check if identity is allowed to rename the specified view.
 
@@ -57,6 +57,7 @@
 import io.trino.spi.security.SystemSecurityContext;
 import io.trino.spi.security.TrinoPrincipal;
 import io.trino.spi.security.ViewExpression;
+import io.trino.spi.security.ViewSecurity;
 import io.trino.transaction.TransactionId;
 import io.trino.transaction.TransactionManager;
 import jakarta.annotation.PreDestroy;
@@ -771,16 +772,16 @@ public void checkCanUpdateTableColumns(SecurityContext securityContext, Qualifie
     }
 
     @Override
-    public void checkCanCreateView(SecurityContext securityContext, QualifiedObjectName viewName)
+    public void checkCanCreateView(SecurityContext securityContext, QualifiedObjectName viewName, Optional<ViewSecurity> security)
     {
         requireNonNull(securityContext, "securityContext is null");
         requireNonNull(viewName, "viewName is null");
 
         checkCanAccessCatalog(securityContext, viewName.catalogName());
 
-        systemAuthorizationCheck(control -> control.checkCanCreateView(securityContext.toSystemSecurityContext(), viewName.asCatalogSchemaTableName()));
+        systemAuthorizationCheck(control -> control.checkCanCreateView(securityContext.toSystemSecurityContext(), viewName.asCatalogSchemaTableName(), security));
 
-        catalogAuthorizationCheck(viewName.catalogName(), securityContext, (control, context) -> control.checkCanCreateView(context, viewName.asSchemaTableName()));
+        catalogAuthorizationCheck(viewName.catalogName(), securityContext, (control, context) -> control.checkCanCreateView(context, viewName.asSchemaTableName(), security));
     }
 
     @Override
 
@@ -24,6 +24,7 @@
 import io.trino.spi.security.Identity;
 import io.trino.spi.security.Privilege;
 import io.trino.spi.security.TrinoPrincipal;
+import io.trino.spi.security.ViewSecurity;
 
 import java.security.Principal;
 import java.util.Collection;
@@ -161,7 +162,7 @@ public void checkCanTruncateTable(SecurityContext context, QualifiedObjectName t
     public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectName tableName, Set<String> updatedColumnNames) {}
 
     @Override
-    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName) {}
+    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security) {}
 
     @Override
     public void checkCanRenameView(SecurityContext context, QualifiedObjectName viewName, QualifiedObjectName newViewName) {}
 
@@ -27,6 +27,7 @@
 import io.trino.spi.security.Identity;
 import io.trino.spi.security.Privilege;
 import io.trino.spi.security.TrinoPrincipal;
+import io.trino.spi.security.ViewSecurity;
 
 import java.security.Principal;
 import java.util.Collection;
@@ -337,7 +338,7 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN
     }
 
     @Override
-    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)
+    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)
     {
         denyCreateView(viewName.toString());
     }
 
@@ -26,6 +26,7 @@
 import io.trino.spi.security.Privilege;
 import io.trino.spi.security.TrinoPrincipal;
 import io.trino.spi.security.ViewExpression;
+import io.trino.spi.security.ViewSecurity;
 
 import java.security.Principal;
 import java.util.Collection;
@@ -279,9 +280,9 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN
     }
 
     @Override
-    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)
+    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)
     {
-        delegate().checkCanCreateView(context, viewName);
+        delegate().checkCanCreateView(context, viewName, security);
     }
 
     @Override
 
@@ -29,6 +29,7 @@
 import io.trino.spi.security.Privilege;
 import io.trino.spi.security.TrinoPrincipal;
 import io.trino.spi.security.ViewExpression;
+import io.trino.spi.security.ViewSecurity;
 import io.trino.spi.type.Type;
 
 import java.util.List;
@@ -259,10 +260,10 @@ public void checkCanUpdateTableColumns(ConnectorSecurityContext context, SchemaT
     }
 
     @Override
-    public void checkCanCreateView(ConnectorSecurityContext context, SchemaTableName viewName)
+    public void checkCanCreateView(ConnectorSecurityContext context, SchemaTableName viewName, Optional<ViewSecurity> security)
     {
         checkArgument(context == null, "context must be null");
-        accessControl.checkCanCreateView(securityContext, getQualifiedObjectName(viewName));
+        accessControl.checkCanCreateView(securityContext, getQualifiedObjectName(viewName), security);
     }
 
     @Override
 
@@ -92,6 +92,7 @@
 import io.trino.spi.security.GroupProvider;
 import io.trino.spi.security.Identity;
 import io.trino.spi.security.ViewExpression;
+import io.trino.spi.security.ViewSecurity;
 import io.trino.spi.type.ArrayType;
 import io.trino.spi.type.CharType;
 import io.trino.spi.type.DateType;
@@ -1056,6 +1057,7 @@ protected Scope visitCreateTableAsSelect(CreateTableAsSelect node, Optional<Scop
         protected Scope visitCreateView(CreateView node, Optional<Scope> scope)
         {
             QualifiedObjectName viewName = createQualifiedObjectName(session, node, node.getName());
+            Optional<ViewSecurity> viewSecurity = node.getSecurity().map(security -> ViewSecurity.valueOf(security.name()));
 
             node.getQuery().getFunctions().stream().findFirst().ifPresent(function -> {
                 throw semanticException(NOT_SUPPORTED, function, "Views cannot contain inline functions");
@@ -1066,7 +1068,7 @@ protected Scope visitCreateView(CreateView node, Optional<Scope> scope)
 
             Scope queryScope = analyzer.analyze(node.getQuery());
 
-            accessControl.checkCanCreateView(session.toSecurityContext(), viewName);
+            accessControl.checkCanCreateView(session.toSecurityContext(), viewName, viewSecurity);
 
             validateColumns(node, queryScope.getRelationType());
 
 
@@ -31,6 +31,7 @@
 import io.trino.spi.connector.SchemaTableName;
 import io.trino.spi.security.Identity;
 import io.trino.spi.security.ViewExpression;
+import io.trino.spi.security.ViewSecurity;
 import io.trino.transaction.TransactionManager;
 
 import java.security.Principal;
@@ -538,13 +539,13 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN
     }
 
     @Override
-    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)
+    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)
     {
         if (shouldDenyPrivilege(context.getIdentity().getUser(), viewName.objectName(), CREATE_VIEW)) {
             denyCreateView(viewName.toString());
         }
         if (denyPrivileges.isEmpty()) {
-            super.checkCanCreateView(context, viewName);
+            super.checkCanCreateView(context, viewName, security);
         }
     }
 
 
@@ -32,6 +32,7 @@
 import io.trino.spi.security.Privilege;
 import io.trino.spi.security.TrinoPrincipal;
 import io.trino.spi.security.ViewExpression;
+import io.trino.spi.security.ViewSecurity;
 
 import java.security.Principal;
 import java.util.Collection;
@@ -396,11 +397,11 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN
     }
 
     @Override
-    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)
+    public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)
     {
         Span span = startSpan("checkCanCreateView");
         try (var _ = scopedSpan(span)) {
-            delegate.checkCanCreateView(context, viewName);
+            delegate.checkCanCreateView(context, viewName, security);
         }
     }
Original file line number	Diff line number	Diff line change
`@@ -27,6 +27,7 @@`
`27`	`27`	`import io.trino.spi.security.Identity;`
`28`	`28`	`import io.trino.spi.security.Privilege;`
`29`	`29`	`import io.trino.spi.security.TrinoPrincipal;`
	`30`	`+import io.trino.spi.security.ViewSecurity;`
`30`	`31`
`31`	`32`	`import java.security.Principal;`
`32`	`33`	`import java.util.Collection;`
`@@ -337,7 +338,7 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN`
`337`	`338`	`}`
`338`	`339`
`339`	`340`	`@Override`
`340`		`- public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)`
	`341`	`+ public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)`
`341`	`342`	`{`
`342`	`343`	`denyCreateView(viewName.toString());`
`343`	`344`	`}`
Original file line number	Diff line number	Diff line change
`@@ -26,6 +26,7 @@`
`26`	`26`	`import io.trino.spi.security.Privilege;`
`27`	`27`	`import io.trino.spi.security.TrinoPrincipal;`
`28`	`28`	`import io.trino.spi.security.ViewExpression;`
	`29`	`+import io.trino.spi.security.ViewSecurity;`
`29`	`30`
`30`	`31`	`import java.security.Principal;`
`31`	`32`	`import java.util.Collection;`
`@@ -279,9 +280,9 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN`
`279`	`280`	`}`
`280`	`281`
`281`	`282`	`@Override`
`282`		`- public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)`
	`283`	`+ public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)`
`283`	`284`	`{`
`284`		`- delegate().checkCanCreateView(context, viewName);`
	`285`	`+ delegate().checkCanCreateView(context, viewName, security);`
`285`	`286`	`}`
`286`	`287`
`287`	`288`	`@Override`
Original file line number	Diff line number	Diff line change
`@@ -29,6 +29,7 @@`
`29`	`29`	`import io.trino.spi.security.Privilege;`
`30`	`30`	`import io.trino.spi.security.TrinoPrincipal;`
`31`	`31`	`import io.trino.spi.security.ViewExpression;`
	`32`	`+import io.trino.spi.security.ViewSecurity;`
`32`	`33`	`import io.trino.spi.type.Type;`
`33`	`34`
`34`	`35`	`import java.util.List;`
`@@ -259,10 +260,10 @@ public void checkCanUpdateTableColumns(ConnectorSecurityContext context, SchemaT`
`259`	`260`	`}`
`260`	`261`
`261`	`262`	`@Override`
`262`		`- public void checkCanCreateView(ConnectorSecurityContext context, SchemaTableName viewName)`
	`263`	`+ public void checkCanCreateView(ConnectorSecurityContext context, SchemaTableName viewName, Optional<ViewSecurity> security)`
`263`	`264`	`{`
`264`	`265`	`checkArgument(context == null, "context must be null");`
`265`		`- accessControl.checkCanCreateView(securityContext, getQualifiedObjectName(viewName));`
	`266`	`+ accessControl.checkCanCreateView(securityContext, getQualifiedObjectName(viewName), security);`
`266`	`267`	`}`
`267`	`268`
`268`	`269`	`@Override`
Original file line number	Diff line number	Diff line change
`@@ -31,6 +31,7 @@`
`31`	`31`	`import io.trino.spi.connector.SchemaTableName;`
`32`	`32`	`import io.trino.spi.security.Identity;`
`33`	`33`	`import io.trino.spi.security.ViewExpression;`
	`34`	`+import io.trino.spi.security.ViewSecurity;`
`34`	`35`	`import io.trino.transaction.TransactionManager;`
`35`	`36`
`36`	`37`	`import java.security.Principal;`
`@@ -538,13 +539,13 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN`
`538`	`539`	`}`
`539`	`540`
`540`	`541`	`@Override`
`541`		`- public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)`
	`542`	`+ public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)`
`542`	`543`	`{`
`543`	`544`	`if (shouldDenyPrivilege(context.getIdentity().getUser(), viewName.objectName(), CREATE_VIEW)) {`
`544`	`545`	`denyCreateView(viewName.toString());`
`545`	`546`	`}`
`546`	`547`	`if (denyPrivileges.isEmpty()) {`
`547`		`- super.checkCanCreateView(context, viewName);`
	`548`	`+ super.checkCanCreateView(context, viewName, security);`
`548`	`549`	`}`
`549`	`550`	`}`
`550`	`551`
Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,7 @@`
`32`	`32`	`import io.trino.spi.security.Privilege;`
`33`	`33`	`import io.trino.spi.security.TrinoPrincipal;`
`34`	`34`	`import io.trino.spi.security.ViewExpression;`
	`35`	`+import io.trino.spi.security.ViewSecurity;`
`35`	`36`
`36`	`37`	`import java.security.Principal;`
`37`	`38`	`import java.util.Collection;`
`@@ -396,11 +397,11 @@ public void checkCanUpdateTableColumns(SecurityContext context, QualifiedObjectN`
`396`	`397`	`}`
`397`	`398`
`398`	`399`	`@Override`
`399`		`- public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName)`
	`400`	`+ public void checkCanCreateView(SecurityContext context, QualifiedObjectName viewName, Optional<ViewSecurity> security)`
`400`	`401`	`{`
`401`	`402`	`Span span = startSpan("checkCanCreateView");`
`402`	`403`	`try (var _ = scopedSpan(span)) {`
`403`		`- delegate.checkCanCreateView(context, viewName);`
	`404`	`+ delegate.checkCanCreateView(context, viewName, security);`
`404`	`405`	`}`
`405`	`406`	`}`
`406`	`407`