Class: Aws::LakeFormation::Client
- Inherits:
-
Seahorse::Client::Base
- Object
- Seahorse::Client::Base
- Aws::LakeFormation::Client
- Includes:
- ClientStubs
- Defined in:
- lib/aws-sdk-lakeformation/client.rb
Overview
An API client for LakeFormation. To construct a client, you need to configure a ‘:region` and `:credentials`.
client = Aws::LakeFormation::Client.new(
region: region_name,
credentials: credentials,
# ...
)
For details on configuring region and credentials see the [developer guide](/sdk-for-ruby/v3/developer-guide/setup-config.html).
See #initialize for a full list of supported configuration options.
Class Attribute Summary collapse
- .identifier ⇒ Object readonly private
API Operations collapse
-
#add_lf_tags_to_resource(params = {}) ⇒ Types::AddLFTagsToResourceResponse
Attaches one or more LF-tags to an existing resource.
-
#assume_decorated_role_with_saml(params = {}) ⇒ Types::AssumeDecoratedRoleWithSAMLResponse
Allows a caller to assume an IAM role decorated as the SAML user specified in the SAML assertion included in the request.
-
#batch_grant_permissions(params = {}) ⇒ Types::BatchGrantPermissionsResponse
Batch operation to grant permissions to the principal.
-
#batch_revoke_permissions(params = {}) ⇒ Types::BatchRevokePermissionsResponse
Batch operation to revoke permissions from the principal.
-
#cancel_transaction(params = {}) ⇒ Struct
Attempts to cancel the specified transaction.
-
#commit_transaction(params = {}) ⇒ Types::CommitTransactionResponse
Attempts to commit the specified transaction.
-
#create_data_cells_filter(params = {}) ⇒ Struct
Creates a data cell filter to allow one to grant access to certain columns on certain rows.
-
#create_lake_formation_identity_center_configuration(params = {}) ⇒ Types::CreateLakeFormationIdentityCenterConfigurationResponse
Creates an IAM Identity Center connection with Lake Formation to allow IAM Identity Center users and groups to access Data Catalog resources.
-
#create_lake_formation_opt_in(params = {}) ⇒ Struct
Enforce Lake Formation permissions for the given databases, tables, and principals.
-
#create_lf_tag(params = {}) ⇒ Struct
Creates an LF-tag with the specified name and values.
-
#create_lf_tag_expression(params = {}) ⇒ Struct
Creates a new LF-Tag expression with the provided name, description, catalog ID, and expression body.
-
#delete_data_cells_filter(params = {}) ⇒ Struct
Deletes a data cell filter.
-
#delete_lake_formation_identity_center_configuration(params = {}) ⇒ Struct
Deletes an IAM Identity Center connection with Lake Formation.
-
#delete_lake_formation_opt_in(params = {}) ⇒ Struct
Remove the Lake Formation permissions enforcement of the given databases, tables, and principals.
-
#delete_lf_tag(params = {}) ⇒ Struct
Deletes the specified LF-tag given a key name.
-
#delete_lf_tag_expression(params = {}) ⇒ Struct
Deletes the LF-Tag expression.
-
#delete_objects_on_cancel(params = {}) ⇒ Struct
For a specific governed table, provides a list of Amazon S3 objects that will be written during the current transaction and that can be automatically deleted if the transaction is canceled.
-
#deregister_resource(params = {}) ⇒ Struct
Deregisters the resource as managed by the Data Catalog.
-
#describe_lake_formation_identity_center_configuration(params = {}) ⇒ Types::DescribeLakeFormationIdentityCenterConfigurationResponse
Retrieves the instance ARN and application ARN for the connection.
-
#describe_resource(params = {}) ⇒ Types::DescribeResourceResponse
Retrieves the current data access role for the given resource registered in Lake Formation.
-
#describe_transaction(params = {}) ⇒ Types::DescribeTransactionResponse
Returns the details of a single transaction.
-
#extend_transaction(params = {}) ⇒ Struct
Indicates to the service that the specified transaction is still active and should not be treated as idle and aborted.
-
#get_data_cells_filter(params = {}) ⇒ Types::GetDataCellsFilterResponse
Returns a data cells filter.
-
#get_data_lake_principal(params = {}) ⇒ Types::GetDataLakePrincipalResponse
Returns the identity of the invoking principal.
-
#get_data_lake_settings(params = {}) ⇒ Types::GetDataLakeSettingsResponse
Retrieves the list of the data lake administrators of a Lake Formation-managed data lake.
-
#get_effective_permissions_for_path(params = {}) ⇒ Types::GetEffectivePermissionsForPathResponse
Returns the Lake Formation permissions for a specified table or database resource located at a path in Amazon S3.
-
#get_lf_tag(params = {}) ⇒ Types::GetLFTagResponse
Returns an LF-tag definition.
-
#get_lf_tag_expression(params = {}) ⇒ Types::GetLFTagExpressionResponse
Returns the details about the LF-Tag expression.
-
#get_query_state(params = {}) ⇒ Types::GetQueryStateResponse
Returns the state of a query previously submitted.
-
#get_query_statistics(params = {}) ⇒ Types::GetQueryStatisticsResponse
Retrieves statistics on the planning and execution of a query.
-
#get_resource_lf_tags(params = {}) ⇒ Types::GetResourceLFTagsResponse
Returns the LF-tags applied to a resource.
-
#get_table_objects(params = {}) ⇒ Types::GetTableObjectsResponse
Returns the set of Amazon S3 objects that make up the specified governed table.
-
#get_temporary_glue_partition_credentials(params = {}) ⇒ Types::GetTemporaryGluePartitionCredentialsResponse
This API is identical to ‘GetTemporaryTableCredentials` except that this is used when the target Data Catalog resource is of type Partition.
-
#get_temporary_glue_table_credentials(params = {}) ⇒ Types::GetTemporaryGlueTableCredentialsResponse
Allows a caller in a secure environment to assume a role with permission to access Amazon S3.
-
#get_work_unit_results(params = {}) ⇒ Types::GetWorkUnitResultsResponse
Returns the work units resulting from the query.
-
#get_work_units(params = {}) ⇒ Types::GetWorkUnitsResponse
Retrieves the work units generated by the ‘StartQueryPlanning` operation.
-
#grant_permissions(params = {}) ⇒ Struct
Grants permissions to the principal to access metadata in the Data Catalog and data organized in underlying data storage such as Amazon S3.
-
#list_data_cells_filter(params = {}) ⇒ Types::ListDataCellsFilterResponse
Lists all the data cell filters on a table.
-
#list_lake_formation_opt_ins(params = {}) ⇒ Types::ListLakeFormationOptInsResponse
Retrieve the current list of resources and principals that are opt in to enforce Lake Formation permissions.
-
#list_lf_tag_expressions(params = {}) ⇒ Types::ListLFTagExpressionsResponse
Returns the LF-Tag expressions in caller’s account filtered based on caller’s permissions.
-
#list_lf_tags(params = {}) ⇒ Types::ListLFTagsResponse
Lists LF-tags that the requester has permission to view.
-
#list_permissions(params = {}) ⇒ Types::ListPermissionsResponse
Returns a list of the principal permissions on the resource, filtered by the permissions of the caller.
-
#list_resources(params = {}) ⇒ Types::ListResourcesResponse
Lists the resources registered to be managed by the Data Catalog.
-
#list_table_storage_optimizers(params = {}) ⇒ Types::ListTableStorageOptimizersResponse
Returns the configuration of all storage optimizers associated with a specified table.
-
#list_transactions(params = {}) ⇒ Types::ListTransactionsResponse
Returns metadata about transactions and their status.
-
#put_data_lake_settings(params = {}) ⇒ Struct
Sets the list of data lake administrators who have admin privileges on all resources managed by Lake Formation.
-
#register_resource(params = {}) ⇒ Struct
Registers the resource as managed by the Data Catalog.
-
#remove_lf_tags_from_resource(params = {}) ⇒ Types::RemoveLFTagsFromResourceResponse
Removes an LF-tag from the resource.
-
#revoke_permissions(params = {}) ⇒ Struct
Revokes permissions to the principal to access metadata in the Data Catalog and data organized in underlying data storage such as Amazon S3.
-
#search_databases_by_lf_tags(params = {}) ⇒ Types::SearchDatabasesByLFTagsResponse
This operation allows a search on ‘DATABASE` resources by `TagCondition`.
-
#search_tables_by_lf_tags(params = {}) ⇒ Types::SearchTablesByLFTagsResponse
This operation allows a search on ‘TABLE` resources by `LFTag`s.
-
#start_query_planning(params = {}) ⇒ Types::StartQueryPlanningResponse
Submits a request to process a query statement.
-
#start_transaction(params = {}) ⇒ Types::StartTransactionResponse
Starts a new transaction and returns its transaction ID.
-
#update_data_cells_filter(params = {}) ⇒ Struct
Updates a data cell filter.
-
#update_lake_formation_identity_center_configuration(params = {}) ⇒ Struct
Updates the IAM Identity Center connection parameters.
-
#update_lf_tag(params = {}) ⇒ Struct
Updates the list of possible values for the specified LF-tag key.
-
#update_lf_tag_expression(params = {}) ⇒ Struct
Updates the name of the LF-Tag expression to the new description and expression body provided.
-
#update_resource(params = {}) ⇒ Struct
Updates the data access role used for vending access to the given (registered) resource in Lake Formation.
-
#update_table_objects(params = {}) ⇒ Struct
Updates the manifest of Amazon S3 objects that make up the specified governed table.
-
#update_table_storage_optimizer(params = {}) ⇒ Types::UpdateTableStorageOptimizerResponse
Updates the configuration of the storage optimizers for a table.
Class Method Summary collapse
- .errors_module ⇒ Object private
Instance Method Summary collapse
- #build_request(operation_name, params = {}) ⇒ Object private
-
#initialize(options) ⇒ Client
constructor
A new instance of Client.
- #waiter_names ⇒ Object deprecated private Deprecated.
Constructor Details
#initialize(options) ⇒ Client
Returns a new instance of Client.
444 445 446 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 444 def initialize(*args) super end |
Class Attribute Details
.identifier ⇒ Object (readonly)
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
4160 4161 4162 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 4160 def identifier @identifier end |
Class Method Details
.errors_module ⇒ Object
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
4163 4164 4165 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 4163 def errors_module Errors end |
Instance Method Details
#add_lf_tags_to_resource(params = {}) ⇒ Types::AddLFTagsToResourceResponse
Attaches one or more LF-tags to an existing resource.
550 551 552 553 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 550 def (params = {}, = {}) req = build_request(:add_lf_tags_to_resource, params) req.send_request() end |
#assume_decorated_role_with_saml(params = {}) ⇒ Types::AssumeDecoratedRoleWithSAMLResponse
Allows a caller to assume an IAM role decorated as the SAML user specified in the SAML assertion included in the request. This decoration allows Lake Formation to enforce access policies against the SAML users and groups. This API operation requires SAML federation setup in the caller’s account as it can only be called with valid SAML assertions. Lake Formation does not scope down the permission of the assumed role. All permissions attached to the role via the SAML federation setup will be included in the role session.
This decorated role is expected to access data in Amazon S3 by getting temporary access from Lake Formation which is authorized via the virtual API ‘GetDataAccess`. Therefore, all SAML roles that can be assumed via `AssumeDecoratedRoleWithSAML` must at a minimum include `lakeformation:GetDataAccess` in their role policies. A typical IAM policy attached to such a role would look as follows:
617 618 619 620 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 617 def assume_decorated_role_with_saml(params = {}, = {}) req = build_request(:assume_decorated_role_with_saml, params) req.send_request() end |
#batch_grant_permissions(params = {}) ⇒ Types::BatchGrantPermissionsResponse
Batch operation to grant permissions to the principal.
757 758 759 760 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 757 def (params = {}, = {}) req = build_request(:batch_grant_permissions, params) req.send_request() end |
#batch_revoke_permissions(params = {}) ⇒ Types::BatchRevokePermissionsResponse
Batch operation to revoke permissions from the principal.
897 898 899 900 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 897 def (params = {}, = {}) req = build_request(:batch_revoke_permissions, params) req.send_request() end |
#build_request(operation_name, params = {}) ⇒ Object
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
4133 4134 4135 4136 4137 4138 4139 4140 4141 4142 4143 4144 4145 4146 4147 4148 4149 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 4133 def build_request(operation_name, params = {}) handlers = @handlers.for(operation_name) tracer = config.telemetry_provider.tracer_provider.tracer( Aws::Telemetry.module_to_tracer_name('Aws::LakeFormation') ) context = Seahorse::Client::RequestContext.new( operation_name: operation_name, operation: config.api.operation(operation_name), client: self, params: params, config: config, tracer: tracer ) context[:gem_name] = 'aws-sdk-lakeformation' context[:gem_version] = '1.65.0' Seahorse::Client::Request.new(handlers, context) end |
#cancel_transaction(params = {}) ⇒ Struct
Attempts to cancel the specified transaction. Returns an exception if the transaction was previously committed.
920 921 922 923 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 920 def cancel_transaction(params = {}, = {}) req = build_request(:cancel_transaction, params) req.send_request() end |
#commit_transaction(params = {}) ⇒ Types::CommitTransactionResponse
Attempts to commit the specified transaction. Returns an exception if the transaction was previously aborted. This API action is idempotent if called multiple times for the same transaction.
950 951 952 953 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 950 def commit_transaction(params = {}, = {}) req = build_request(:commit_transaction, params) req.send_request() end |
#create_data_cells_filter(params = {}) ⇒ Struct
Creates a data cell filter to allow one to grant access to certain columns on certain rows.
989 990 991 992 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 989 def create_data_cells_filter(params = {}, = {}) req = build_request(:create_data_cells_filter, params) req.send_request() end |
#create_lake_formation_identity_center_configuration(params = {}) ⇒ Types::CreateLakeFormationIdentityCenterConfigurationResponse
Creates an IAM Identity Center connection with Lake Formation to allow IAM Identity Center users and groups to access Data Catalog resources.
1138 1139 1140 1141 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1138 def create_lake_formation_identity_center_configuration(params = {}, = {}) req = build_request(:create_lake_formation_identity_center_configuration, params) req.send_request() end |
#create_lake_formation_opt_in(params = {}) ⇒ Struct
Enforce Lake Formation permissions for the given databases, tables, and principals.
1222 1223 1224 1225 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1222 def create_lake_formation_opt_in(params = {}, = {}) req = build_request(:create_lake_formation_opt_in, params) req.send_request() end |
#create_lf_tag(params = {}) ⇒ Struct
Creates an LF-tag with the specified name and values.
1022 1023 1024 1025 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1022 def create_lf_tag(params = {}, = {}) req = build_request(:create_lf_tag, params) req.send_request() end |
#create_lf_tag_expression(params = {}) ⇒ Struct
Creates a new LF-Tag expression with the provided name, description, catalog ID, and expression body. This call fails if a LF-Tag expression with the same name already exists in the caller’s account or if the underlying LF-Tags don’t exist. To call this API operation, caller needs the following Lake Formation permissions:
‘CREATE_LF_TAG_EXPRESSION` on the root catalog resource.
‘GRANT_WITH_LF_TAG_EXPRESSION` on all underlying LF-Tag key:value pairs included in the expression.
1073 1074 1075 1076 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1073 def create_lf_tag_expression(params = {}, = {}) req = build_request(:create_lf_tag_expression, params) req.send_request() end |
#delete_data_cells_filter(params = {}) ⇒ Struct
Deletes a data cell filter.
1256 1257 1258 1259 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1256 def delete_data_cells_filter(params = {}, = {}) req = build_request(:delete_data_cells_filter, params) req.send_request() end |
#delete_lake_formation_identity_center_configuration(params = {}) ⇒ Struct
Deletes an IAM Identity Center connection with Lake Formation.
1345 1346 1347 1348 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1345 def delete_lake_formation_identity_center_configuration(params = {}, = {}) req = build_request(:delete_lake_formation_identity_center_configuration, params) req.send_request() end |
#delete_lake_formation_opt_in(params = {}) ⇒ Struct
Remove the Lake Formation permissions enforcement of the given databases, tables, and principals.
1429 1430 1431 1432 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1429 def delete_lake_formation_opt_in(params = {}, = {}) req = build_request(:delete_lake_formation_opt_in, params) req.send_request() end |
#delete_lf_tag(params = {}) ⇒ Struct
Deletes the specified LF-tag given a key name. If the input parameter tag key was not found, then the operation will throw an exception. When you delete an LF-tag, the ‘LFTagPolicy` attached to the LF-tag becomes invalid. If the deleted LF-tag was still assigned to any resource, the tag policy attach to the deleted LF-tag will no longer be applied to the resource.
1290 1291 1292 1293 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1290 def delete_lf_tag(params = {}, = {}) req = build_request(:delete_lf_tag, params) req.send_request() end |
#delete_lf_tag_expression(params = {}) ⇒ Struct
Deletes the LF-Tag expression. The caller must be a data lake admin or have ‘DROP` permissions on the LF-Tag expression. Deleting a LF-Tag expression will also delete all `LFTagPolicy` permissions referencing the LF-Tag expression.
1320 1321 1322 1323 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1320 def delete_lf_tag_expression(params = {}, = {}) req = build_request(:delete_lf_tag_expression, params) req.send_request() end |
#delete_objects_on_cancel(params = {}) ⇒ Struct
For a specific governed table, provides a list of Amazon S3 objects that will be written during the current transaction and that can be automatically deleted if the transaction is canceled. Without this call, no Amazon S3 objects are automatically deleted when a transaction cancels.
The Glue ETL library function ‘write_dynamic_frame.from_catalog()` includes an option to automatically call `DeleteObjectsOnCancel` before writes. For more information, see [Rolling Back Amazon S3 Writes].
[1]: docs.aws.amazon.com/lake-formation/latest/dg/transactions-data-operations.html#rolling-back-writes
1487 1488 1489 1490 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1487 def delete_objects_on_cancel(params = {}, = {}) req = build_request(:delete_objects_on_cancel, params) req.send_request() end |
#deregister_resource(params = {}) ⇒ Struct
Deregisters the resource as managed by the Data Catalog.
When you deregister a path, Lake Formation removes the path from the inline policy attached to your service-linked role.
1513 1514 1515 1516 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1513 def deregister_resource(params = {}, = {}) req = build_request(:deregister_resource, params) req.send_request() end |
#describe_lake_formation_identity_center_configuration(params = {}) ⇒ Types::DescribeLakeFormationIdentityCenterConfigurationResponse
Retrieves the instance ARN and application ARN for the connection.
1557 1558 1559 1560 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1557 def describe_lake_formation_identity_center_configuration(params = {}, = {}) req = build_request(:describe_lake_formation_identity_center_configuration, params) req.send_request() end |
#describe_resource(params = {}) ⇒ Types::DescribeResourceResponse
Retrieves the current data access role for the given resource registered in Lake Formation.
1590 1591 1592 1593 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1590 def describe_resource(params = {}, = {}) req = build_request(:describe_resource, params) req.send_request() end |
#describe_transaction(params = {}) ⇒ Types::DescribeTransactionResponse
Returns the details of a single transaction.
1621 1622 1623 1624 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1621 def describe_transaction(params = {}, = {}) req = build_request(:describe_transaction, params) req.send_request() end |
#extend_transaction(params = {}) ⇒ Struct
Indicates to the service that the specified transaction is still active and should not be treated as idle and aborted.
Write transactions that remain idle for a long period are automatically aborted unless explicitly extended.
1647 1648 1649 1650 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1647 def extend_transaction(params = {}, = {}) req = build_request(:extend_transaction, params) req.send_request() end |
#get_data_cells_filter(params = {}) ⇒ Types::GetDataCellsFilterResponse
Returns a data cells filter.
1696 1697 1698 1699 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1696 def get_data_cells_filter(params = {}, = {}) req = build_request(:get_data_cells_filter, params) req.send_request() end |
#get_data_lake_principal(params = {}) ⇒ Types::GetDataLakePrincipalResponse
Returns the identity of the invoking principal.
1715 1716 1717 1718 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1715 def get_data_lake_principal(params = {}, = {}) req = build_request(:get_data_lake_principal, params) req.send_request() end |
#get_data_lake_settings(params = {}) ⇒ Types::GetDataLakeSettingsResponse
Retrieves the list of the data lake administrators of a Lake Formation-managed data lake.
1768 1769 1770 1771 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1768 def get_data_lake_settings(params = {}, = {}) req = build_request(:get_data_lake_settings, params) req.send_request() end |
#get_effective_permissions_for_path(params = {}) ⇒ Types::GetEffectivePermissionsForPathResponse
Returns the Lake Formation permissions for a specified table or database resource located at a path in Amazon S3. ‘GetEffectivePermissionsForPath` will not return databases and tables if the catalog is encrypted.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
1862 1863 1864 1865 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1862 def (params = {}, = {}) req = build_request(:get_effective_permissions_for_path, params) req.send_request() end |
#get_lf_tag(params = {}) ⇒ Types::GetLFTagResponse
Returns an LF-tag definition.
1902 1903 1904 1905 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1902 def get_lf_tag(params = {}, = {}) req = build_request(:get_lf_tag, params) req.send_request() end |
#get_lf_tag_expression(params = {}) ⇒ Types::GetLFTagExpressionResponse
Returns the details about the LF-Tag expression. The caller must be a data lake admin or must have ‘DESCRIBE` permission on the LF-Tag expression resource.
1945 1946 1947 1948 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1945 def get_lf_tag_expression(params = {}, = {}) req = build_request(:get_lf_tag_expression, params) req.send_request() end |
#get_query_state(params = {}) ⇒ Types::GetQueryStateResponse
Returns the state of a query previously submitted. Clients are expected to poll ‘GetQueryState` to monitor the current state of the planning before retrieving the work units. A query state is only visible to the principal that made the initial call to `StartQueryPlanning`.
1979 1980 1981 1982 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 1979 def get_query_state(params = {}, = {}) req = build_request(:get_query_state, params) req.send_request() end |
#get_query_statistics(params = {}) ⇒ Types::GetQueryStatisticsResponse
Retrieves statistics on the planning and execution of a query.
2016 2017 2018 2019 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2016 def get_query_statistics(params = {}, = {}) req = build_request(:get_query_statistics, params) req.send_request() end |
#get_resource_lf_tags(params = {}) ⇒ Types::GetResourceLFTagsResponse
Returns the LF-tags applied to a resource.
2128 2129 2130 2131 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2128 def (params = {}, = {}) req = build_request(:get_resource_lf_tags, params) req.send_request() end |
#get_table_objects(params = {}) ⇒ Types::GetTableObjectsResponse
Returns the set of Amazon S3 objects that make up the specified governed table. A transaction ID or timestamp can be specified for time-travel queries.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
2212 2213 2214 2215 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2212 def get_table_objects(params = {}, = {}) req = build_request(:get_table_objects, params) req.send_request() end |
#get_temporary_glue_partition_credentials(params = {}) ⇒ Types::GetTemporaryGluePartitionCredentialsResponse
This API is identical to ‘GetTemporaryTableCredentials` except that this is used when the target Data Catalog resource is of type Partition. Lake Formation restricts the permission of the vended credentials with the same scope down policy which restricts access to a single Amazon S3 prefix.
2278 2279 2280 2281 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2278 def get_temporary_glue_partition_credentials(params = {}, = {}) req = build_request(:get_temporary_glue_partition_credentials, params) req.send_request() end |
#get_temporary_glue_table_credentials(params = {}) ⇒ Types::GetTemporaryGlueTableCredentialsResponse
Allows a caller in a secure environment to assume a role with permission to access Amazon S3. In order to vend such credentials, Lake Formation assumes the role associated with a registered location, for example an Amazon S3 bucket, with a scope down policy which restricts the access to a single prefix.
To call this API, the role that the service assumes must have ‘lakeformation:GetDataAccess` permission on the resource.
2364 2365 2366 2367 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2364 def get_temporary_glue_table_credentials(params = {}, = {}) req = build_request(:get_temporary_glue_table_credentials, params) req.send_request() end |
#get_work_unit_results(params = {}) ⇒ Types::GetWorkUnitResultsResponse
Returns the work units resulting from the query. Work units can be executed in any order and in parallel.
2404 2405 2406 2407 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2404 def get_work_unit_results(params = {}, = {}, &block) req = build_request(:get_work_unit_results, params) req.send_request(, &block) end |
#get_work_units(params = {}) ⇒ Types::GetWorkUnitsResponse
Retrieves the work units generated by the ‘StartQueryPlanning` operation.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
2455 2456 2457 2458 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2455 def get_work_units(params = {}, = {}) req = build_request(:get_work_units, params) req.send_request() end |
#grant_permissions(params = {}) ⇒ Struct
Grants permissions to the principal to access metadata in the Data Catalog and data organized in underlying data storage such as Amazon S3.
For information about permissions, see [Security and Access Control to Metadata and Data].
[1]: docs.aws.amazon.com/lake-formation/latest/dg/security-data-access.html
2574 2575 2576 2577 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2574 def (params = {}, = {}) req = build_request(:grant_permissions, params) req.send_request() end |
#list_data_cells_filter(params = {}) ⇒ Types::ListDataCellsFilterResponse
Lists all the data cell filters on a table.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
2630 2631 2632 2633 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2630 def list_data_cells_filter(params = {}, = {}) req = build_request(:list_data_cells_filter, params) req.send_request() end |
#list_lake_formation_opt_ins(params = {}) ⇒ Types::ListLakeFormationOptInsResponse
Retrieve the current list of resources and principals that are opt in to enforce Lake Formation permissions.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
2876 2877 2878 2879 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2876 def list_lake_formation_opt_ins(params = {}, = {}) req = build_request(:list_lake_formation_opt_ins, params) req.send_request() end |
#list_lf_tag_expressions(params = {}) ⇒ Types::ListLFTagExpressionsResponse
Returns the LF-Tag expressions in caller’s account filtered based on caller’s permissions. Data Lake and read only admins implicitly can see all tag expressions in their account, else caller needs DESCRIBE permissions on tag expression.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
2681 2682 2683 2684 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2681 def list_lf_tag_expressions(params = {}, = {}) req = build_request(:list_lf_tag_expressions, params) req.send_request() end |
#list_lf_tags(params = {}) ⇒ Types::ListLFTagsResponse
Lists LF-tags that the requester has permission to view.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
2737 2738 2739 2740 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 2737 def (params = {}, = {}) req = build_request(:list_lf_tags, params) req.send_request() end |
#list_permissions(params = {}) ⇒ Types::ListPermissionsResponse
Returns a list of the principal permissions on the resource, filtered by the permissions of the caller. For example, if you are granted an ALTER permission, you are able to see only the principal permissions for ALTER.
This operation returns only those permissions that have been explicitly granted.
For information about permissions, see [Security and Access Control to Metadata and Data].
[1]: docs.aws.amazon.com/lake-formation/latest/dg/security-data-access.html
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3051 3052 3053 3054 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3051 def (params = {}, = {}) req = build_request(:list_permissions, params) req.send_request() end |
#list_resources(params = {}) ⇒ Types::ListResourcesResponse
Lists the resources registered to be managed by the Data Catalog.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3104 3105 3106 3107 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3104 def list_resources(params = {}, = {}) req = build_request(:list_resources, params) req.send_request() end |
#list_table_storage_optimizers(params = {}) ⇒ Types::ListTableStorageOptimizersResponse
Returns the configuration of all storage optimizers associated with a specified table.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3164 3165 3166 3167 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3164 def list_table_storage_optimizers(params = {}, = {}) req = build_request(:list_table_storage_optimizers, params) req.send_request() end |
#list_transactions(params = {}) ⇒ Types::ListTransactionsResponse
Returns metadata about transactions and their status. To prevent the response from growing indefinitely, only uncommitted transactions and those available for time-travel queries are returned.
This operation can help you identify uncommitted transactions or to get information about transactions.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3221 3222 3223 3224 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3221 def list_transactions(params = {}, = {}) req = build_request(:list_transactions, params) req.send_request() end |
#put_data_lake_settings(params = {}) ⇒ Struct
Sets the list of data lake administrators who have admin privileges on all resources managed by Lake Formation. For more information on admin privileges, see [Granting Lake Formation Permissions].
This API replaces the current list of data lake admins with the new list being passed. To add an admin, fetch the current list and add the new admin to that list and pass that list in this API.
[1]: docs.aws.amazon.com/lake-formation/latest/dg/lake-formation-permissions.html
3300 3301 3302 3303 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3300 def put_data_lake_settings(params = {}, = {}) req = build_request(:put_data_lake_settings, params) req.send_request() end |
#register_resource(params = {}) ⇒ Struct
Registers the resource as managed by the Data Catalog.
To add or update data, Lake Formation needs read/write access to the chosen Amazon S3 path. Choose a role that you know has permission to do this, or choose the AWSServiceRoleForLakeFormationDataAccess service-linked role. When you register the first Amazon S3 path, the service-linked role and a new inline policy are created on your behalf. Lake Formation adds the first path to the inline policy and attaches it to the service-linked role. When you register subsequent paths, Lake Formation adds the path to the existing policy.
The following request registers a new location and gives Lake Formation permission to use the service-linked role to access that location.
‘ResourceArn = arn:aws:s3:::my-bucket/ UseServiceLinkedRole = true`
If ‘UseServiceLinkedRole` is not set to true, you must provide or set the `RoleArn`:
‘arn:aws:iam::12345:role/my-data-access-role`
3371 3372 3373 3374 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3371 def register_resource(params = {}, = {}) req = build_request(:register_resource, params) req.send_request() end |
#remove_lf_tags_from_resource(params = {}) ⇒ Types::RemoveLFTagsFromResourceResponse
Removes an LF-tag from the resource. Only database, table, or tableWithColumns resource are allowed. To tag columns, use the column inclusion list in ‘tableWithColumns` to specify column input.
3479 3480 3481 3482 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3479 def (params = {}, = {}) req = build_request(:remove_lf_tags_from_resource, params) req.send_request() end |
#revoke_permissions(params = {}) ⇒ Struct
Revokes permissions to the principal to access metadata in the Data Catalog and data organized in underlying data storage such as Amazon S3.
3585 3586 3587 3588 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3585 def (params = {}, = {}) req = build_request(:revoke_permissions, params) req.send_request() end |
#search_databases_by_lf_tags(params = {}) ⇒ Types::SearchDatabasesByLFTagsResponse
This operation allows a search on ‘DATABASE` resources by `TagCondition`. This operation is used by admins who want to grant user permissions on certain `TagConditions`. Before making a grant, the admin can use `SearchDatabasesByTags` to find all resources where the given `TagConditions` are valid to verify whether the returned resources can be shared.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3651 3652 3653 3654 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3651 def (params = {}, = {}) req = build_request(:search_databases_by_lf_tags, params) req.send_request() end |
#search_tables_by_lf_tags(params = {}) ⇒ Types::SearchTablesByLFTagsResponse
This operation allows a search on ‘TABLE` resources by `LFTag`s. This will be used by admins who want to grant user permissions on certain LF-tags. Before making a grant, the admin can use `SearchTablesByLFTags` to find all resources where the given `LFTag`s are valid to verify whether the returned resources can be shared.
The returned response is a pageable response and is Enumerable. For details on usage see PageableResponse.
3729 3730 3731 3732 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3729 def (params = {}, = {}) req = build_request(:search_tables_by_lf_tags, params) req.send_request() end |
#start_query_planning(params = {}) ⇒ Types::StartQueryPlanningResponse
Submits a request to process a query statement.
This operation generates work units that can be retrieved with the ‘GetWorkUnits` operation as soon as the query state is WORKUNITS_AVAILABLE or FINISHED.
3773 3774 3775 3776 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3773 def start_query_planning(params = {}, = {}) req = build_request(:start_query_planning, params) req.send_request() end |
#start_transaction(params = {}) ⇒ Types::StartTransactionResponse
Starts a new transaction and returns its transaction ID. Transaction IDs are opaque objects that you can use to identify a transaction.
3804 3805 3806 3807 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3804 def start_transaction(params = {}, = {}) req = build_request(:start_transaction, params) req.send_request() end |
#update_data_cells_filter(params = {}) ⇒ Struct
Updates a data cell filter.
3842 3843 3844 3845 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3842 def update_data_cells_filter(params = {}, = {}) req = build_request(:update_data_cells_filter, params) req.send_request() end |
#update_lake_formation_identity_center_configuration(params = {}) ⇒ Struct
Updates the IAM Identity Center connection parameters.
3987 3988 3989 3990 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3987 def update_lake_formation_identity_center_configuration(params = {}, = {}) req = build_request(:update_lake_formation_identity_center_configuration, params) req.send_request() end |
#update_lf_tag(params = {}) ⇒ Struct
Updates the list of possible values for the specified LF-tag key. If the LF-tag does not exist, the operation throws an EntityNotFoundException. The values in the delete key values will be deleted from list of possible values. If any value in the delete key values is attached to a resource, then API errors out with a 400 Exception - “Update not allowed”. Untag the attribute before deleting the LF-tag key’s value.
3885 3886 3887 3888 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3885 def update_lf_tag(params = {}, = {}) req = build_request(:update_lf_tag, params) req.send_request() end |
#update_lf_tag_expression(params = {}) ⇒ Struct
Updates the name of the LF-Tag expression to the new description and expression body provided. Updating a LF-Tag expression immediately changes the permission boundaries of all existing ‘LFTagPolicy` permission grants that reference the given LF-Tag expression.
3928 3929 3930 3931 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 3928 def update_lf_tag_expression(params = {}, = {}) req = build_request(:update_lf_tag_expression, params) req.send_request() end |
#update_resource(params = {}) ⇒ Struct
Updates the data access role used for vending access to the given (registered) resource in Lake Formation.
4025 4026 4027 4028 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 4025 def update_resource(params = {}, = {}) req = build_request(:update_resource, params) req.send_request() end |
#update_table_objects(params = {}) ⇒ Struct
Updates the manifest of Amazon S3 objects that make up the specified governed table.
4080 4081 4082 4083 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 4080 def update_table_objects(params = {}, = {}) req = build_request(:update_table_objects, params) req.send_request() end |
#update_table_storage_optimizer(params = {}) ⇒ Types::UpdateTableStorageOptimizerResponse
Updates the configuration of the storage optimizers for a table.
4124 4125 4126 4127 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 4124 def update_table_storage_optimizer(params = {}, = {}) req = build_request(:update_table_storage_optimizer, params) req.send_request() end |
#waiter_names ⇒ Object
This method is part of a private API. You should avoid using this method if possible, as it may be removed or be changed in the future.
4153 4154 4155 |
# File 'lib/aws-sdk-lakeformation/client.rb', line 4153 def waiter_names [] end |