Thanks Dennis for the detailed analysis and suggestions! Here are a few
questions and comments I have:
> Consider expanding the set of privilege definitions to be type-specific
I like this! It seems like it solves the problem about inheritance and
future grants as you said. I will think a bit mor
+1, Thanks Jack and team for getting the discussion started with this
proposal!
Much of this is well aligned with what we noticed when implementing RBAC
for Polaris Catalog, namely that even if a more complicated User/Role
structure exists outside of the catalog, that it's necessary to be able to
