Add exclusion for pg_automv schema (#91)

timjell · web-flow · commit b45024dcf0c5 · 2022-11-18T16:31:37.000-08:00
diff --git a/SecretsManagerRedshiftRotationMultiUser/lambda_function.py b/SecretsManagerRedshiftRotationMultiUser/lambda_function.py
@@ -222,7 +222,7 @@ def set_secret(service_client, arn, token):
                 table_perm_types = ['SELECT', 'INSERT', 'UPDATE', 'DELETE', 'REFERENCES']
                 for perm in table_perm_types:
                     cur.execute("SELECT QUOTE_IDENT(tab.schemaname) as schemaname, QUOTE_IDENT(tab.tablename) as tablename FROM pg_tables tab WHERE "
-                                "HAS_TABLE_PRIVILEGE(%s, QUOTE_IDENT(tab.schemaname) + '.' + QUOTE_IDENT(tab.tablename) , %s) AND tab.schemaname NOT IN ('pg_internal')",
+                                "HAS_TABLE_PRIVILEGE(%s, QUOTE_IDENT(tab.schemaname) + '.' + QUOTE_IDENT(tab.tablename) , %s) AND tab.schemaname NOT IN ('pg_internal','pg_automv')",
                                 (current_dict['username'], perm))
                     tables = [row.schemaname + '.' + row.tablename for row in cur.fetchall()]
                     if tables:
