External Access Integrations
Snowflake uses external access integrations to establish rules governing access to external network locations from User-Defined Functions (UDFs) or procedure handlers. These rules encompass permitted authentication secrets and network policies. For more details, refer to Snowflake: External Access Integration
In the context of Snoweaver, external access integrations play a crucial role in enabling jobs to connect to external endpoints securely. To use these integrations, they must be explicitly added to the Allowed External Access Integrations section on the Projects page within the admin console. This requirement ensures that only approved integrations are used, maintaining security and compliance across your Snoweaver projects.
You can configure and register integrations with Snoweaver through the admin console. To execute the generated script, ensure that the executing role has both the CREATE INTEGRATION privilege and the application role APP_ADMIN.
To fully revoke Snoweaver’s access to an integration after deregistering it, follow these steps:
Revoke any access permissions Snoweaver has for the integration using Snowflake SQL commands.
Ensure that any existing job instances associated with the integration are either rebuilt or deleted.
Note
Currently, Snowflake restricts native applications from requesting privileges to create security integrations on consumer accounts. This limitation may be lifted in the future, which could allow for automation of this process.