We have a cluster like this:
We have set up following users and grants:
project1_user has all access to project1_keyspace
project2_user has all access to project2_keyspace
However project1_user can still do a 'describe schema' and get the schema for project2_keyspace as well. We do not want project1_user to have any knowledge for project2 in any way (cqlsh/java-driver etc) .