aws-sdk-glue 1.169.0 → 1.171.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6ea91f2ebbbdac9e0b3cb3143b659311ae3cff9d7c141c292d57a6dc12b0d808
-  data.tar.gz: 6739829c9a011811b6ee5556527c55d0550a63c742b1c69cf9afa1225c2b4914
+  metadata.gz: 94f7fce50a8ebf0798baf21c67ed4f6c26d61a51703feb4b575f2a2edb5f3900
+  data.tar.gz: f55d99a2d34db183a588e3f555f5a3019d9a4222adad32db215c43923bc4663f
 SHA512:
-  metadata.gz: 3dfb262f466b36b57c4caf8b05acb48afbb564689deeb1f90a248bd202fdd164fd7f44fcf8797c7897117d26729ab66f1c43a36199043b66a5763e9db4bacb4a
-  data.tar.gz: 553eb5698719bdae71113afd982d9add5fc4f896df188081d8d151cd880d130d63e03180a39a8399b008620ae7ca17f12f9ed8a99da1ba07a748ead8a6c2beb9
+  metadata.gz: ae621e9c38d53ca2685cd0a9bcdaac261b6cbf4021e3ed9b902e719ea7d45f252f44e8082bb9c3dc8c16a4091da336b91d361ed34035164f5f7a605c7f3c7e39
+  data.tar.gz: 71fbed515f5e4991afce52946613e4d219c23c443b33fb31138b75b5c1184fb793a2005d5258419279edcc690ea422ab048ea060520b907c849eda0268014f38

data/CHANGELOG.md

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
 
+1.171.0 (2024-04-19)
+------------------
+
+* Feature - Adding RowFilter in the response for GetUnfilteredTableMetadata API
+
+1.170.0 (2024-04-12)
+------------------
+
+* Feature - Modifying request for GetUnfilteredTableMetadata for view-related fields.
+
 1.169.0 (2024-04-02)
 ------------------
 

data/VERSION

@@ -1 +1 @@
-1.169.0
+1.171.0

data/lib/aws-sdk-glue/client.rb

@@ -11801,8 +11801,8 @@ module Aws::Glue
       req.send_request(options)
     end
 
-    # Retrieves table metadata from the Data Catalog that contains
-    # unfiltered metadata.
+    # Allows a third-party analytical engine to retrieve unfiltered table
+    # metadata from the Data Catalog.
     #
     # For IAM authorization, the public IAM action associated with this API
     # is `glue:GetTable`.
@@ -11825,7 +11825,46 @@ module Aws::Glue
     #   A structure containing Lake Formation audit context information.
     #
     # @option params [required, Array<String>] :supported_permission_types
-    #   (Required) A list of supported permission types.
+    #   Indicates the level of filtering a third-party analytical engine is
+    #   capable of enforcing when calling the `GetUnfilteredTableMetadata` API
+    #   operation. Accepted values are:
+    #
+    #   * `COLUMN_PERMISSION` - Column permissions ensure that users can
+    #     access only specific columns in the table. If there are particular
+    #     columns contain sensitive data, data lake administrators can define
+    #     column filters that exclude access to specific columns.
+    #
+    #   * `CELL_FILTER_PERMISSION` - Cell-level filtering combines column
+    #     filtering (include or exclude columns) and row filter expressions to
+    #     restrict access to individual elements in the table.
+    #
+    #   * `NESTED_PERMISSION` - Nested permissions combines cell-level
+    #     filtering and nested column filtering to restrict access to columns
+    #     and/or nested columns in specific rows based on row filter
+    #     expressions.
+    #
+    #   * `NESTED_CELL_PERMISSION` - Nested cell permissions combines nested
+    #     permission with nested cell-level filtering. This allows different
+    #     subsets of nested columns to be restricted based on an array of row
+    #     filter expressions.
+    #
+    #   Note: Each of these permission types follows a hierarchical order
+    #   where each subsequent permission type includes all permission of the
+    #   previous type.
+    #
+    #   Important: If you provide a supported permission type that doesn't
+    #   match the user's level of permissions on the table, then Lake
+    #   Formation raises an exception. For example, if the third-party engine
+    #   calling the `GetUnfilteredTableMetadata` operation can enforce only
+    #   column-level filtering, and the user has nested cell filtering applied
+    #   on the table, Lake Formation throws an exception, and will not return
+    #   unfiltered table metadata and data access credentials.
+    #
+    # @option params [String] :parent_resource_arn
+    #   The resource ARN of the view.
+    #
+    # @option params [String] :root_resource_arn
+    #   The resource ARN of the root view in a chain of nested views.
     #
     # @option params [Types::SupportedDialect] :supported_dialect
     #   A structure specifying the dialect and dialect version used by the
@@ -11852,6 +11891,7 @@ module Aws::Glue
     #   * {Types::GetUnfilteredTableMetadataResponse#resource_arn #resource_arn} => String
     #   * {Types::GetUnfilteredTableMetadataResponse#is_protected #is_protected} => Boolean
     #   * {Types::GetUnfilteredTableMetadataResponse#permissions #permissions} => Array&lt;String&gt;
+    #   * {Types::GetUnfilteredTableMetadataResponse#row_filter #row_filter} => String
     #
     # @example Request syntax with placeholder values
     #
@@ -11866,6 +11906,8 @@ module Aws::Glue
     #       all_columns_requested: false,
     #     },
     #     supported_permission_types: ["COLUMN_PERMISSION"], # required, accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION, NESTED_PERMISSION, NESTED_CELL_PERMISSION
+    #     parent_resource_arn: "ArnString",
+    #     root_resource_arn: "ArnString",
     #     supported_dialect: {
     #       dialect: "REDSHIFT", # accepts REDSHIFT, ATHENA, SPARK
     #       dialect_version: "ViewDialectVersionString",
@@ -11974,6 +12016,7 @@ module Aws::Glue
     #   resp.is_protected #=> Boolean
     #   resp.permissions #=> Array
     #   resp.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS"
+    #   resp.row_filter #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/glue-2017-03-31/GetUnfilteredTableMetadata AWS API Documentation
     #
@@ -17078,7 +17121,7 @@ module Aws::Glue
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-glue'
-      context[:gem_version] = '1.169.0'
+      context[:gem_version] = '1.171.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/aws-sdk-glue/client_api.rb

@@ -3675,6 +3675,8 @@ module Aws::Glue
     GetUnfilteredTableMetadataRequest.add_member(:name, Shapes::ShapeRef.new(shape: NameString, required: true, location_name: "Name"))
     GetUnfilteredTableMetadataRequest.add_member(:audit_context, Shapes::ShapeRef.new(shape: AuditContext, location_name: "AuditContext"))
     GetUnfilteredTableMetadataRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, required: true, location_name: "SupportedPermissionTypes"))
+    GetUnfilteredTableMetadataRequest.add_member(:parent_resource_arn, Shapes::ShapeRef.new(shape: ArnString, location_name: "ParentResourceArn"))
+    GetUnfilteredTableMetadataRequest.add_member(:root_resource_arn, Shapes::ShapeRef.new(shape: ArnString, location_name: "RootResourceArn"))
     GetUnfilteredTableMetadataRequest.add_member(:supported_dialect, Shapes::ShapeRef.new(shape: SupportedDialect, location_name: "SupportedDialect"))
     GetUnfilteredTableMetadataRequest.add_member(:permissions, Shapes::ShapeRef.new(shape: PermissionList, location_name: "Permissions"))
     GetUnfilteredTableMetadataRequest.add_member(:query_session_context, Shapes::ShapeRef.new(shape: QuerySessionContext, location_name: "QuerySessionContext"))
@@ -3689,6 +3691,7 @@ module Aws::Glue
     GetUnfilteredTableMetadataResponse.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ArnString, location_name: "ResourceArn"))
     GetUnfilteredTableMetadataResponse.add_member(:is_protected, Shapes::ShapeRef.new(shape: Boolean, location_name: "IsProtected"))
     GetUnfilteredTableMetadataResponse.add_member(:permissions, Shapes::ShapeRef.new(shape: PermissionList, location_name: "Permissions"))
+    GetUnfilteredTableMetadataResponse.add_member(:row_filter, Shapes::ShapeRef.new(shape: PredicateString, location_name: "RowFilter"))
     GetUnfilteredTableMetadataResponse.struct_class = Types::GetUnfilteredTableMetadataResponse
 
     GetUserDefinedFunctionRequest.add_member(:catalog_id, Shapes::ShapeRef.new(shape: CatalogIdString, location_name: "CatalogId"))

data/lib/aws-sdk-glue/types.rb

@@ -12103,9 +12103,51 @@ module Aws::Glue
     #   @return [Types::AuditContext]
     #
     # @!attribute [rw] supported_permission_types
-    #   (Required) A list of supported permission types.
+    #   Indicates the level of filtering a third-party analytical engine is
+    #   capable of enforcing when calling the `GetUnfilteredTableMetadata`
+    #   API operation. Accepted values are:
+    #
+    #   * `COLUMN_PERMISSION` - Column permissions ensure that users can
+    #     access only specific columns in the table. If there are particular
+    #     columns contain sensitive data, data lake administrators can
+    #     define column filters that exclude access to specific columns.
+    #
+    #   * `CELL_FILTER_PERMISSION` - Cell-level filtering combines column
+    #     filtering (include or exclude columns) and row filter expressions
+    #     to restrict access to individual elements in the table.
+    #
+    #   * `NESTED_PERMISSION` - Nested permissions combines cell-level
+    #     filtering and nested column filtering to restrict access to
+    #     columns and/or nested columns in specific rows based on row filter
+    #     expressions.
+    #
+    #   * `NESTED_CELL_PERMISSION` - Nested cell permissions combines nested
+    #     permission with nested cell-level filtering. This allows different
+    #     subsets of nested columns to be restricted based on an array of
+    #     row filter expressions.
+    #
+    #   Note: Each of these permission types follows a hierarchical order
+    #   where each subsequent permission type includes all permission of the
+    #   previous type.
+    #
+    #   Important: If you provide a supported permission type that doesn't
+    #   match the user's level of permissions on the table, then Lake
+    #   Formation raises an exception. For example, if the third-party
+    #   engine calling the `GetUnfilteredTableMetadata` operation can
+    #   enforce only column-level filtering, and the user has nested cell
+    #   filtering applied on the table, Lake Formation throws an exception,
+    #   and will not return unfiltered table metadata and data access
+    #   credentials.
     #   @return [Array<String>]
     #
+    # @!attribute [rw] parent_resource_arn
+    #   The resource ARN of the view.
+    #   @return [String]
+    #
+    # @!attribute [rw] root_resource_arn
+    #   The resource ARN of the root view in a chain of nested views.
+    #   @return [String]
+    #
     # @!attribute [rw] supported_dialect
     #   A structure specifying the dialect and dialect version used by the
     #   query engine.
@@ -12132,6 +12174,8 @@ module Aws::Glue
       :name,
       :audit_context,
       :supported_permission_types,
+      :parent_resource_arn,
+      :root_resource_arn,
       :supported_dialect,
       :permissions,
       :query_session_context)
@@ -12183,6 +12227,13 @@ module Aws::Glue
     #   to authorize the call when no view context is found.
     #   @return [Array<String>]
     #
+    # @!attribute [rw] row_filter
+    #   The filter that applies to the table. For example when applying the
+    #   filter in SQL, it would go in the `WHERE` clause and can be
+    #   evaluated by using an `AND` operator with any other predicates
+    #   applied by the user querying the table.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/glue-2017-03-31/GetUnfilteredTableMetadataResponse AWS API Documentation
     #
     class GetUnfilteredTableMetadataResponse < Struct.new(
@@ -12194,7 +12245,8 @@ module Aws::Glue
       :is_multi_dialect_view,
       :resource_arn,
       :is_protected,
-      :permissions)
+      :permissions,
+      :row_filter)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -14366,14 +14418,19 @@ module Aws::Glue
     #   @return [String]
     #
     # @!attribute [rw] max_fetch_time_in_ms
-    #   The maximum time spent in the job executor to fetch a record from
-    #   the Kinesis data stream per shard, specified in milliseconds (ms).
-    #   The default value is `1000`.
+    #   The maximum time spent for the job executor to read records for the
+    #   current batch from the Kinesis data stream, specified in
+    #   milliseconds (ms). Multiple `GetRecords` API calls may be made
+    #   within this time. The default value is `1000`.
     #   @return [Integer]
     #
     # @!attribute [rw] max_fetch_records_per_shard
     #   The maximum number of records to fetch per shard in the Kinesis data
-    #   stream. The default value is `100000`.
+    #   stream per microbatch. Note: The client can exceed this limit if the
+    #   streaming job has already read extra records from Kinesis (in the
+    #   same get-records call). If `MaxFetchRecordsPerShard` needs to be
+    #   strict then it needs to be a multiple of `MaxRecordPerRead`. The
+    #   default value is `100000`.
     #   @return [Integer]
     #
     # @!attribute [rw] max_record_per_read

data/lib/aws-sdk-glue.rb

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-glue/customizations'
 # @!group service
 module Aws::Glue
 
-  GEM_VERSION = '1.169.0'
+  GEM_VERSION = '1.171.0'
 
 end

data/sig/client.rbs

@@ -3713,6 +3713,7 @@ module Aws
         def resource_arn: () -> ::String
         def is_protected: () -> bool
         def permissions: () -> ::Array[("ALL" | "SELECT" | "ALTER" | "DROP" | "DELETE" | "INSERT" | "CREATE_DATABASE" | "CREATE_TABLE" | "DATA_LOCATION_ACCESS")]
+        def row_filter: () -> ::String
       end
       # https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/Glue/Client.html#get_unfiltered_table_metadata-instance_method
       def get_unfiltered_table_metadata: (
@@ -3726,6 +3727,8 @@ module Aws
                                              all_columns_requested: bool?
                                            },
                                            supported_permission_types: Array[("COLUMN_PERMISSION" | "CELL_FILTER_PERMISSION" | "NESTED_PERMISSION" | "NESTED_CELL_PERMISSION")],
+                                           ?parent_resource_arn: ::String,
+                                           ?root_resource_arn: ::String,
                                            ?supported_dialect: {
                                              dialect: ("REDSHIFT" | "ATHENA" | "SPARK")?,
                                              dialect_version: ::String?

data/sig/types.rbs

@@ -3036,6 +3036,8 @@ module Aws::Glue
       attr_accessor name: ::String
       attr_accessor audit_context: Types::AuditContext
       attr_accessor supported_permission_types: ::Array[("COLUMN_PERMISSION" | "CELL_FILTER_PERMISSION" | "NESTED_PERMISSION" | "NESTED_CELL_PERMISSION")]
+      attr_accessor parent_resource_arn: ::String
+      attr_accessor root_resource_arn: ::String
       attr_accessor supported_dialect: Types::SupportedDialect
       attr_accessor permissions: ::Array[("ALL" | "SELECT" | "ALTER" | "DROP" | "DELETE" | "INSERT" | "CREATE_DATABASE" | "CREATE_TABLE" | "DATA_LOCATION_ACCESS")]
       attr_accessor query_session_context: Types::QuerySessionContext
@@ -3052,6 +3054,7 @@ module Aws::Glue
       attr_accessor resource_arn: ::String
       attr_accessor is_protected: bool
       attr_accessor permissions: ::Array[("ALL" | "SELECT" | "ALTER" | "DROP" | "DELETE" | "INSERT" | "CREATE_DATABASE" | "CREATE_TABLE" | "DATA_LOCATION_ACCESS")]
+      attr_accessor row_filter: ::String
       SENSITIVE: []
     end
 

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-glue
 version: !ruby/object:Gem::Version
-  version: 1.169.0
+  version: 1.171.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-04-02 00:00:00.000000000 Z
+date: 2024-04-19 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core