Class: Aws::LakeFormation::Types::DataLakeSettings

Inherits:

Struct

• Object
• Struct
• Aws::LakeFormation::Types::DataLakeSettings

Defined in:

(unknown)

Overview

Note:

When passing DataLakeSettings as input to an Aws::Client method, you can use a vanilla Hash:

{
  data_lake_admins: [
    {
      data_lake_principal_identifier: "DataLakePrincipalString",
    },
  ],
  create_database_default_permissions: [
    {
      principal: {
        data_lake_principal_identifier: "DataLakePrincipalString",
      },
      permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS
    },
  ],
  create_table_default_permissions: [
    {
      principal: {
        data_lake_principal_identifier: "DataLakePrincipalString",
      },
      permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS
    },
  ],
  trusted_resource_owners: ["CatalogIdString"],
}

A structure representing a list of AWS Lake Formation principals designated as data lake administrators and lists of principal permission entries for default create database and default create table permissions.

Returned by:

• GetDataLakeSettingsResponse#data_lake_settings
• PutDataLakeSettingsRequest#data_lake_settings

See Also:

• AWS API Documentation

Instance Attribute Summary

• #create_database_default_permissions ⇒ Array<Types::PrincipalPermissions>

  A structure representing a list of up to three principal permissions entries for default create database permissions.

• #create_table_default_permissions ⇒ Array<Types::PrincipalPermissions>

  A structure representing a list of up to three principal permissions entries for default create table permissions.

• #data_lake_admins ⇒ Array<Types::DataLakePrincipal>

  A list of AWS Lake Formation principals.

• #trusted_resource_owners ⇒ Array<String>

  A list of the resource-owning account IDs that the caller\'s account can use to share their user access details (user ARNs).

Instance Attribute Details

#create_database_default_permissions ⇒ Array<Types::PrincipalPermissions>

A structure representing a list of up to three principal permissions entries for default create database permissions.

Returns:

• (Array<Types::PrincipalPermissions>) —

  A structure representing a list of up to three principal permissions entries for default create database permissions.

#create_table_default_permissions ⇒ Array<Types::PrincipalPermissions>

A structure representing a list of up to three principal permissions entries for default create table permissions.

Returns:

• (Array<Types::PrincipalPermissions>) —

  A structure representing a list of up to three principal permissions entries for default create table permissions.

#data_lake_admins ⇒ Array<Types::DataLakePrincipal>

A list of AWS Lake Formation principals. Supported principals are IAM users or IAM roles.

Returns:

• (Array<Types::DataLakePrincipal>) —

  A list of AWS Lake Formation principals.

#trusted_resource_owners ⇒ Array<String>

A list of the resource-owning account IDs that the caller\'s account can use to share their user access details (user ARNs). The user ARNs can be logged in the resource owner\'s AWS CloudTrail log.

You may want to specify this property when you are in a high-trust boundary, such as the same team or company.

Returns:

• (Array<String>) —

  A list of the resource-owning account IDs that the caller\'s account can use to share their user access details (user ARNs).