MySQL HeatWave User Guide  /  HeatWave Lakehouse  /  Resource Principals

4.4 Resource Principals

Use a resource principal to authenticate and access Oracle Cloud Infrastructure resources. The resource principal consists of a temporary session token and secure credentials that enables the DB System to authenticate itself to other Oracle Cloud Infrastructure services. Using a resource principal to access services, the token stored with the credentials on MySQL HeatWave is only valid for the resources to which the dynamic group has been granted access. To use a resource principal, you or your tenancy administrator define the Oracle Cloud Infrastructure policies and a dynamic group that allows you to access Oracle Cloud Infrastructure resources with a resource principal. You do not need to create a credential object and MySQL HeatWave Service creates and secures the resource principal credentials you use to access the specified Oracle Cloud Infrastructure resources.