Snowflake
Connect a Snowflake account to trend with a read-only role.
trend connects to Snowflake via the official snowflake-sdk over TLS. We recommend a dedicated read-only role rather than using ACCOUNTADMIN.
Recommended role setup
Run this as a user with SECURITYADMIN:
USE ROLE SECURITYADMIN;
CREATE ROLE TREND_READONLY;
CREATE USER TREND_READONLY_USER
PASSWORD = 'choose-a-strong-password'
DEFAULT_ROLE = TREND_READONLY
DEFAULT_WAREHOUSE = ANALYTICS_WH;
GRANT ROLE TREND_READONLY TO USER TREND_READONLY_USER;
GRANT USAGE ON WAREHOUSE ANALYTICS_WH TO ROLE TREND_READONLY;
GRANT USAGE ON DATABASE PROD TO ROLE TREND_READONLY;
GRANT USAGE ON SCHEMA PROD.PUBLIC TO ROLE TREND_READONLY;
GRANT SELECT ON ALL TABLES IN SCHEMA PROD.PUBLIC TO ROLE TREND_READONLY;
GRANT SELECT ON FUTURE TABLES IN SCHEMA PROD.PUBLIC TO ROLE TREND_READONLY;
Adjust warehouse, database, and schema names to match your setup.
Adding the connection
Connections → New connection → Snowflake. Enter:
- Account identifier — e.g.
xy12345.us-east-1(NOT the full URL) - Username —
TREND_READONLY_USER - Password — the password you set above
- Warehouse, Database, Schema — defaults for the session
- Role —
TREND_READONLY
Click Test connection.
Tip
Snowflake account identifiers vary by deployment region. If xy12345.us-east-1 doesn’t work, try just xy12345 or check Snowflake’s account locator docs.
What to read next
- BigQuery — service-account auth.
- Security model.
- Writing your first dataset.