Birdie using read-only access:
Integration via Reader Account (Snowflake Data Sharing) – recommended for shared-data environments
Integration via Direct OAuth Connection – recommended when Birdie connects directly to your main Snowflake account
Birdie can import data from Snowflake into Birdie for analytics, enrichment and reporting purposes, including:
Operational and reference tables
Feedback-related datasets exposed by the client
Because each Snowflake installation is unique, Birdie’s team will work with your IT administrators to finalize details. This article explains how your Snowflake admin can generate and provide the credentials needed to enable the integration.
Birdie connects to a Snowflake Reader Account created via Snowflake Data Sharing. Birdie runs SELECT queries against databases instantiated from shared objects in that reader account.This model is common when:
Your organization already uses provider to consumer data sharing
You want strict isolation between your production Snowflake account and external consumers such as Birdie
Schema requirements
All Birdie database connectors (Snowflake, Databricks, BigQuery, etc.) require one table or view per feedback type, following the Birdie schema definition.
Examples of feedback types:
Each feedback type must exist as:
Birdie provides the detailed schema reference separately (same model as the S3 schema documentation).
Reader Account method
Birdie connects to a Snowflake Reader Account created via Snowflake Data Sharing. Birdie runs SELECT queries against databases instantiated from shared objects in that reader account.This model is common when:
Your organization already uses provider to consumer data sharing
You want strict isolation between your production Snowflake account and external consumers such as Birdie
Before starting:
You have ACCOUNTADMIN (or equivalent) access on the reader account
The provider account already exposes the necessary shares with the data Birdie will use
Setup in Snowflake
Log into the Reader Account
Use SnowSQL, the Snowflake Web UI, or another supported client:
(Optional) Create a dedicated role for Birdie
Create the Birdie user inside the reader account
(Optional) Create a resource monitor
You can adapt the name and quota as needed.
Create a virtual warehouse in the reader account
Instantiate databases from provider shares
Grant privileges to the Birdie role
Warehouse usage:
Imported privileges on shared databases
Share Reader Account credentials securely with Birdie
Provide to Birdie:
Reader account identifier (host)
Database and schema names that contain the shared data
Password or password rotation mechanism
Birdie will configure the Snowflake connector using these details and run validation queries from the reader account.
Integration via Direct OAuth Connection
In this model, Birdie connects directly to your main Snowflake account using OAuth instead of static passwords.
This is recommended when:
You prefer SSO or OAuth-based access
You do not use Snowflake Data Sharing
You want Birdie to access native production schemas directly
ACCOUNTADMIN (or equivalent) privileges in the main Snowflake account
Access to the Snowflake web console or CLI
The Snowflake connector has been enabled on the Birdie side
Setup in Snowflake
Create the OAuth Security Integration
Create a role and user for Birdie
Generate and test an OAuth token
Share OAuth credentials securely with Birdie
Provide:
Host: Account identifier (e.g. <ACCOUNT_IDENTIFIER>.snowflakecomputing.com)
User name (e.g. BIRDIE_INTEGRATION_USER)
Password: The password set for the Birdie user in step 2
OAuth Client ID: From the security integration created in step 1
OAuth Client Secret: From the security integration created in step 1
Warehouse (e.g. BIRDIE_WH)
Database (e.g. <DATABASE_NAME>)
Schema (e.g. <SCHEMA_NAME>)
Birdie uses the host, client ID, and client secret to reach the Snowflake OAuth token endpoint, and then the user name and password to complete the authorization code flow and obtain an access token.
Birdie will configure the connector and confirm once the integration is active.
Birdie never requires admin privileges for day-to-day operations
Access granted to Birdie is read-only, unless a specific export pipeline is explicitly configured
All credentials must be shared via a secure channel
OAuth is preferred over static passwords whenever possible
Once enabled, the Snowflake connector can import data from Snowflake into Birdie (for example, customer, account, or operational tables you expose to the Birdie role) and export Birdie data such as feedback records, areas, opportunities, and metrics back into Snowflake.