aws-sdk-athena 1.47.0 → 1.48.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 2fe9003ba1094fae9aa14881613746f812fd66d1fa884c5cd36658a139585bb0
4
- data.tar.gz: cd0573a8ce853bc3d22e220a35dea9efef7586d7bb5f08a9efd1cfc4f2e44cd8
3
+ metadata.gz: da7467e550bf620597ceef165f353fc3808321b98e63d7d7d676aeab464bea29
4
+ data.tar.gz: 4cf673e0808b660cf7362bbc01353a4b3dbc9a86b4e82c55d8edafce913e5dda
5
5
  SHA512:
6
- metadata.gz: 15aefea7187c5f80ff87e7c1ba6ba26dd2f4a43832e5d154646e9cbe81792d0170347f4f04b4804cd318c43627302f21e8eea9aac3cee57c12e8b72d43b9b542
7
- data.tar.gz: 87de8497408bff649a91198326d155ccc66281a923bf87a2c83808339af4b8eed032b2f99d932323ab32f5f9dfcea5a1b140e276772ed5923c909f5b0cadd9db
6
+ metadata.gz: e4018d1f3ab5c934357ced0d31157c3433675f762d5bc4b0d24afb28b4dd9198b0a03ec6d16a01bf7774ab9ff2aac714e8d84641408a943603c3ace013043fef
7
+ data.tar.gz: 8c38f7b1b66adc538ae7c0aafa55d841b547c505a4d10d4cec3feb2e4c82af23aeb3e53d973246bf53ac72d8001fbd2d46e6ff49d0531e7c3190733fa9a19077
data/CHANGELOG.md CHANGED
@@ -1,6 +1,11 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.48.0 (2022-02-04)
5
+ ------------------
6
+
7
+ * Feature - You can now optionally specify the account ID that you expect to be the owner of your query results output location bucket in Athena. If the account ID of the query results bucket owner does not match the specified account ID, attempts to output to the bucket will fail with an S3 permissions error.
8
+
4
9
  1.47.0 (2022-02-03)
5
10
  ------------------
6
11
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.47.0
1
+ 1.48.0
@@ -438,6 +438,7 @@ module Aws::Athena
438
438
  # resp.query_executions[0].result_configuration.output_location #=> String
439
439
  # resp.query_executions[0].result_configuration.encryption_configuration.encryption_option #=> String, one of "SSE_S3", "SSE_KMS", "CSE_KMS"
440
440
  # resp.query_executions[0].result_configuration.encryption_configuration.kms_key #=> String
441
+ # resp.query_executions[0].result_configuration.expected_bucket_owner #=> String
441
442
  # resp.query_executions[0].query_execution_context.database #=> String
442
443
  # resp.query_executions[0].query_execution_context.catalog #=> String
443
444
  # resp.query_executions[0].status.state #=> String, one of "QUEUED", "RUNNING", "SUCCEEDED", "FAILED", "CANCELLED"
@@ -703,6 +704,7 @@ module Aws::Athena
703
704
  # encryption_option: "SSE_S3", # required, accepts SSE_S3, SSE_KMS, CSE_KMS
704
705
  # kms_key: "String",
705
706
  # },
707
+ # expected_bucket_owner: "String",
706
708
  # },
707
709
  # enforce_work_group_configuration: false,
708
710
  # publish_cloud_watch_metrics_enabled: false,
@@ -1005,6 +1007,7 @@ module Aws::Athena
1005
1007
  # resp.query_execution.result_configuration.output_location #=> String
1006
1008
  # resp.query_execution.result_configuration.encryption_configuration.encryption_option #=> String, one of "SSE_S3", "SSE_KMS", "CSE_KMS"
1007
1009
  # resp.query_execution.result_configuration.encryption_configuration.kms_key #=> String
1010
+ # resp.query_execution.result_configuration.expected_bucket_owner #=> String
1008
1011
  # resp.query_execution.query_execution_context.database #=> String
1009
1012
  # resp.query_execution.query_execution_context.catalog #=> String
1010
1013
  # resp.query_execution.status.state #=> String, one of "QUEUED", "RUNNING", "SUCCEEDED", "FAILED", "CANCELLED"
@@ -1038,6 +1041,14 @@ module Aws::Athena
1038
1041
  # User Guide*. This request does not execute the query but returns
1039
1042
  # results. Use StartQueryExecution to run a query.
1040
1043
  #
1044
+ # If the original query execution ran using an
1045
+ # ResultConfiguration$ExpectedBucketOwner setting, the setting also
1046
+ # applies to Amazon S3 read operations when `GetQueryResults` is called.
1047
+ # If an expected bucket owner has been specified and the query results
1048
+ # are in an Amazon S3 bucket whose owner account ID is different from
1049
+ # the expected bucket owner, the `GetQueryResults` call fails with an
1050
+ # Amazon S3 permissions error.
1051
+ #
1041
1052
  # To stream query results successfully, the IAM principal with
1042
1053
  # permission to call `GetQueryResults` also must have permissions to the
1043
1054
  # Amazon S3 `GetObject` action for the Athena query results location.
@@ -1180,6 +1191,7 @@ module Aws::Athena
1180
1191
  # resp.work_group.configuration.result_configuration.output_location #=> String
1181
1192
  # resp.work_group.configuration.result_configuration.encryption_configuration.encryption_option #=> String, one of "SSE_S3", "SSE_KMS", "CSE_KMS"
1182
1193
  # resp.work_group.configuration.result_configuration.encryption_configuration.kms_key #=> String
1194
+ # resp.work_group.configuration.result_configuration.expected_bucket_owner #=> String
1183
1195
  # resp.work_group.configuration.enforce_work_group_configuration #=> Boolean
1184
1196
  # resp.work_group.configuration.publish_cloud_watch_metrics_enabled #=> Boolean
1185
1197
  # resp.work_group.configuration.bytes_scanned_cutoff_per_query #=> Integer
@@ -1706,6 +1718,7 @@ module Aws::Athena
1706
1718
  # encryption_option: "SSE_S3", # required, accepts SSE_S3, SSE_KMS, CSE_KMS
1707
1719
  # kms_key: "String",
1708
1720
  # },
1721
+ # expected_bucket_owner: "String",
1709
1722
  # },
1710
1723
  # work_group: "WorkGroupName",
1711
1724
  # })
@@ -1965,6 +1978,8 @@ module Aws::Athena
1965
1978
  # kms_key: "String",
1966
1979
  # },
1967
1980
  # remove_encryption_configuration: false,
1981
+ # expected_bucket_owner: "String",
1982
+ # remove_expected_bucket_owner: false,
1968
1983
  # },
1969
1984
  # publish_cloud_watch_metrics_enabled: false,
1970
1985
  # bytes_scanned_cutoff_per_query: 1,
@@ -2000,7 +2015,7 @@ module Aws::Athena
2000
2015
  params: params,
2001
2016
  config: config)
2002
2017
  context[:gem_name] = 'aws-sdk-athena'
2003
- context[:gem_version] = '1.47.0'
2018
+ context[:gem_version] = '1.48.0'
2004
2019
  Seahorse::Client::Request.new(handlers, context)
2005
2020
  end
2006
2021
 
@@ -528,12 +528,15 @@ module Aws::Athena
528
528
 
529
529
  ResultConfiguration.add_member(:output_location, Shapes::ShapeRef.new(shape: String, location_name: "OutputLocation"))
530
530
  ResultConfiguration.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
531
+ ResultConfiguration.add_member(:expected_bucket_owner, Shapes::ShapeRef.new(shape: String, location_name: "ExpectedBucketOwner"))
531
532
  ResultConfiguration.struct_class = Types::ResultConfiguration
532
533
 
533
534
  ResultConfigurationUpdates.add_member(:output_location, Shapes::ShapeRef.new(shape: String, location_name: "OutputLocation"))
534
535
  ResultConfigurationUpdates.add_member(:remove_output_location, Shapes::ShapeRef.new(shape: BoxedBoolean, location_name: "RemoveOutputLocation"))
535
536
  ResultConfigurationUpdates.add_member(:encryption_configuration, Shapes::ShapeRef.new(shape: EncryptionConfiguration, location_name: "EncryptionConfiguration"))
536
537
  ResultConfigurationUpdates.add_member(:remove_encryption_configuration, Shapes::ShapeRef.new(shape: BoxedBoolean, location_name: "RemoveEncryptionConfiguration"))
538
+ ResultConfigurationUpdates.add_member(:expected_bucket_owner, Shapes::ShapeRef.new(shape: String, location_name: "ExpectedBucketOwner"))
539
+ ResultConfigurationUpdates.add_member(:remove_expected_bucket_owner, Shapes::ShapeRef.new(shape: BoxedBoolean, location_name: "RemoveExpectedBucketOwner"))
537
540
  ResultConfigurationUpdates.struct_class = Types::ResultConfigurationUpdates
538
541
 
539
542
  ResultSet.add_member(:rows, Shapes::ShapeRef.new(shape: RowList, location_name: "Rows"))
@@ -422,6 +422,7 @@ module Aws::Athena
422
422
  # encryption_option: "SSE_S3", # required, accepts SSE_S3, SSE_KMS, CSE_KMS
423
423
  # kms_key: "String",
424
424
  # },
425
+ # expected_bucket_owner: "String",
425
426
  # },
426
427
  # enforce_work_group_configuration: false,
427
428
  # publish_cloud_watch_metrics_enabled: false,
@@ -1960,6 +1961,7 @@ module Aws::Athena
1960
1961
  # encryption_option: "SSE_S3", # required, accepts SSE_S3, SSE_KMS, CSE_KMS
1961
1962
  # kms_key: "String",
1962
1963
  # },
1964
+ # expected_bucket_owner: "String",
1963
1965
  # }
1964
1966
  #
1965
1967
  # @!attribute [rw] output_location
@@ -1994,11 +1996,33 @@ module Aws::Athena
1994
1996
  # [1]: https://docs.aws.amazon.com/athena/latest/ug/workgroups-settings-override.html
1995
1997
  # @return [Types::EncryptionConfiguration]
1996
1998
  #
1999
+ # @!attribute [rw] expected_bucket_owner
2000
+ # The Amazon Web Services account ID that you expect to be the owner
2001
+ # of the Amazon S3 bucket specified by
2002
+ # ResultConfiguration$OutputLocation. If set, Athena uses the value
2003
+ # for `ExpectedBucketOwner` when it makes Amazon S3 calls to your
2004
+ # specified output location. If the `ExpectedBucketOwner` Amazon Web
2005
+ # Services account ID does not match the actual owner of the Amazon S3
2006
+ # bucket, the call fails with a permissions error.
2007
+ #
2008
+ # This is a client-side setting. If workgroup settings override
2009
+ # client-side settings, then the query uses the `ExpectedBucketOwner`
2010
+ # setting that is specified for the workgroup, and also uses the
2011
+ # location for storing query results specified in the workgroup. See
2012
+ # WorkGroupConfiguration$EnforceWorkGroupConfiguration and [Workgroup
2013
+ # Settings Override Client-Side Settings][1].
2014
+ #
2015
+ #
2016
+ #
2017
+ # [1]: https://docs.aws.amazon.com/athena/latest/ug/workgroups-settings-override.html
2018
+ # @return [String]
2019
+ #
1997
2020
  # @see http://docs.aws.amazon.com/goto/WebAPI/athena-2017-05-18/ResultConfiguration AWS API Documentation
1998
2021
  #
1999
2022
  class ResultConfiguration < Struct.new(
2000
2023
  :output_location,
2001
- :encryption_configuration)
2024
+ :encryption_configuration,
2025
+ :expected_bucket_owner)
2002
2026
  SENSITIVE = []
2003
2027
  include Aws::Structure
2004
2028
  end
@@ -2017,6 +2041,8 @@ module Aws::Athena
2017
2041
  # kms_key: "String",
2018
2042
  # },
2019
2043
  # remove_encryption_configuration: false,
2044
+ # expected_bucket_owner: "String",
2045
+ # remove_expected_bucket_owner: false,
2020
2046
  # }
2021
2047
  #
2022
2048
  # @!attribute [rw] output_location
@@ -2041,7 +2067,7 @@ module Aws::Athena
2041
2067
  # in this workgroup should be ignored and set to null. If set to
2042
2068
  # "false" or not set, and a value is present in the `OutputLocation`
2043
2069
  # in `ResultConfigurationUpdates` (the client-side setting), the
2044
- # `OutputLocation` in the workgroup's `ResultConfiguration` will be
2070
+ # `OutputLocation` in the workgroup's `ResultConfiguration` is
2045
2071
  # updated with the new value. For more information, see [Workgroup
2046
2072
  # Settings Override Client-Side Settings][1].
2047
2073
  #
@@ -2061,9 +2087,45 @@ module Aws::Athena
2061
2087
  # to "false" or not set, and a value is present in the
2062
2088
  # `EncryptionConfiguration` in `ResultConfigurationUpdates` (the
2063
2089
  # client-side setting), the `EncryptionConfiguration` in the
2064
- # workgroup's `ResultConfiguration` will be updated with the new
2065
- # value. For more information, see [Workgroup Settings Override
2066
- # Client-Side Settings][1].
2090
+ # workgroup's `ResultConfiguration` is updated with the new value.
2091
+ # For more information, see [Workgroup Settings Override Client-Side
2092
+ # Settings][1].
2093
+ #
2094
+ #
2095
+ #
2096
+ # [1]: https://docs.aws.amazon.com/athena/latest/ug/workgroups-settings-override.html
2097
+ # @return [Boolean]
2098
+ #
2099
+ # @!attribute [rw] expected_bucket_owner
2100
+ # The Amazon Web Services account ID that you expect to be the owner
2101
+ # of the Amazon S3 bucket specified by
2102
+ # ResultConfiguration$OutputLocation. If set, Athena uses the value
2103
+ # for `ExpectedBucketOwner` when it makes Amazon S3 calls to your
2104
+ # specified output location. If the `ExpectedBucketOwner` Amazon Web
2105
+ # Services account ID does not match the actual owner of the Amazon S3
2106
+ # bucket, the call fails with a permissions error.
2107
+ #
2108
+ # If workgroup settings override client-side settings, then the query
2109
+ # uses the `ExpectedBucketOwner` setting that is specified for the
2110
+ # workgroup, and also uses the location for storing query results
2111
+ # specified in the workgroup. See
2112
+ # WorkGroupConfiguration$EnforceWorkGroupConfiguration and [Workgroup
2113
+ # Settings Override Client-Side Settings][1].
2114
+ #
2115
+ #
2116
+ #
2117
+ # [1]: https://docs.aws.amazon.com/athena/latest/ug/workgroups-settings-override.html
2118
+ # @return [String]
2119
+ #
2120
+ # @!attribute [rw] remove_expected_bucket_owner
2121
+ # If set to "true", removes the Amazon Web Services account ID
2122
+ # previously specified for ResultConfiguration$ExpectedBucketOwner. If
2123
+ # set to "false" or not set, and a value is present in the
2124
+ # `ExpectedBucketOwner` in `ResultConfigurationUpdates` (the
2125
+ # client-side setting), the `ExpectedBucketOwner` in the workgroup's
2126
+ # `ResultConfiguration` is updated with the new value. For more
2127
+ # information, see [Workgroup Settings Override Client-Side
2128
+ # Settings][1].
2067
2129
  #
2068
2130
  #
2069
2131
  #
@@ -2076,7 +2138,9 @@ module Aws::Athena
2076
2138
  :output_location,
2077
2139
  :remove_output_location,
2078
2140
  :encryption_configuration,
2079
- :remove_encryption_configuration)
2141
+ :remove_encryption_configuration,
2142
+ :expected_bucket_owner,
2143
+ :remove_expected_bucket_owner)
2080
2144
  SENSITIVE = []
2081
2145
  include Aws::Structure
2082
2146
  end
@@ -2149,6 +2213,7 @@ module Aws::Athena
2149
2213
  # encryption_option: "SSE_S3", # required, accepts SSE_S3, SSE_KMS, CSE_KMS
2150
2214
  # kms_key: "String",
2151
2215
  # },
2216
+ # expected_bucket_owner: "String",
2152
2217
  # },
2153
2218
  # work_group: "WorkGroupName",
2154
2219
  # }
@@ -2601,6 +2666,8 @@ module Aws::Athena
2601
2666
  # kms_key: "String",
2602
2667
  # },
2603
2668
  # remove_encryption_configuration: false,
2669
+ # expected_bucket_owner: "String",
2670
+ # remove_expected_bucket_owner: false,
2604
2671
  # },
2605
2672
  # publish_cloud_watch_metrics_enabled: false,
2606
2673
  # bytes_scanned_cutoff_per_query: 1,
@@ -2719,6 +2786,7 @@ module Aws::Athena
2719
2786
  # encryption_option: "SSE_S3", # required, accepts SSE_S3, SSE_KMS, CSE_KMS
2720
2787
  # kms_key: "String",
2721
2788
  # },
2789
+ # expected_bucket_owner: "String",
2722
2790
  # },
2723
2791
  # enforce_work_group_configuration: false,
2724
2792
  # publish_cloud_watch_metrics_enabled: false,
@@ -2820,6 +2888,8 @@ module Aws::Athena
2820
2888
  # kms_key: "String",
2821
2889
  # },
2822
2890
  # remove_encryption_configuration: false,
2891
+ # expected_bucket_owner: "String",
2892
+ # remove_expected_bucket_owner: false,
2823
2893
  # },
2824
2894
  # publish_cloud_watch_metrics_enabled: false,
2825
2895
  # bytes_scanned_cutoff_per_query: 1,
@@ -48,6 +48,6 @@ require_relative 'aws-sdk-athena/customizations'
48
48
  # @!group service
49
49
  module Aws::Athena
50
50
 
51
- GEM_VERSION = '1.47.0'
51
+ GEM_VERSION = '1.48.0'
52
52
 
53
53
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-athena
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.47.0
4
+ version: 1.48.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2022-02-03 00:00:00.000000000 Z
11
+ date: 2022-02-04 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core