Snowflake Exam ADA-C01 Topic 4 Question 17 Discussion

Actual exam question for Snowflake's ADA-C01 exam

Question #: 17
Topic #: 4

Which masking policy will mask a column whenever it is queried through a view owned by a role named MASKED_VIEW_ROLE?

Acreate or replace masking policy maskstring as (val string) returns string ->
case
when is_role_in_session ('MASKED_VIEW_ROLE') then ' **
else val
end;
*,

Bcreate or replace masking policy maskString as (val string) returns string ->
case
when array_contains ('MASKED_VIEW_ROLE' :: variant, parse_json (current_available_roles ())) then '*
else val
end;
** '

Ccreate or replace masking policy maskstring as (val string) returns string ->
case
when invoker_role() in ('MASKED_VIEW_ROLE') then
else val
end;
' **

Dcreate or replace masking policy maskString as (val string) returns string ->
case
when current_role() in ('MASKED_VIEW_ROLE') then ' ********* '
else val
end;

Show Suggested Answer

Suggested Answer: A

A masking policy is a SQL expression that transforms the data in a column based on the role that queries the column1. The is_role_in_session function returns true if the specified role is in the current session2. Therefore, the masking policy in option A will mask the column data with asterisks whenever it is queried through a view owned by the MASKED_VIEW_ROLE3. The other options use different functions that do not check the ownership of the view, but rather the current role, the invoker role, or the available roles in the session45. These functions may not return the desired result if the role that owns the view is different from the role that queries the view.

by Brent at Jun 29, 2024, 07:51 PM

Limited Time Offer

25%

Off

Get Premium ADA-C01 Questions as Interactive Web-Based Practice Test or PDF