aws-sdk-glue 1.21.0 → 1.22.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA1:
3
- metadata.gz: 33dfbd8cd501aea555a6adb73af4f5b1a22de7f0
4
- data.tar.gz: 99483d744483150ef11ae2070fdbe801f283da9a
3
+ metadata.gz: 7bd20ff19fa24b57fa6f85130314adc106c1ee44
4
+ data.tar.gz: 135656c06781a39736f74b7e79802c9146b0153e
5
5
  SHA512:
6
- metadata.gz: 16e66d8af6abf7832f043fe70f14bc20d61c98771c4c0fb2adefa0ef7bef32839b56517f5afb5662981d3b2e2647aec2a0d4f30b32711bd62bc598bc775243cf
7
- data.tar.gz: 5863e06bd1e29206e631b20c61721d195d5c62a4ffe83da75a0eaf22e5734a6584025b8b3d2fc7bf62a41337c9ab0304f79a713edc20e13526b3ed579c7b4ad7
6
+ metadata.gz: 618f61a6979c13ab6b6bc322d648f0d8d9be51d6892c7a713fab3444a1711388df05a5b81734b71ca80c3a5ea06b2034145a39548d921c9c31ca3f203c448bfc
7
+ data.tar.gz: 588086109cd797973b58bece273b860e20733cd51d2da784294f8a7e9d22f8cde154730106772d43869fdfcc350e90513869f0a6d33e3d46b31ea9a90054f5a2
@@ -42,6 +42,6 @@ require_relative 'aws-sdk-glue/customizations'
42
42
  # @service
43
43
  module Aws::Glue
44
44
 
45
- GEM_VERSION = '1.21.0'
45
+ GEM_VERSION = '1.22.0'
46
46
 
47
47
  end
@@ -2022,6 +2022,15 @@ module Aws::Glue
2022
2022
  # @option params [required, String] :name
2023
2023
  # The name of the connection definition to retrieve.
2024
2024
  #
2025
+ # @option params [Boolean] :hide_password
2026
+ # Allow you to retrieve the connection metadata without displaying the
2027
+ # password. For instance, the AWS Glue console uses this flag to
2028
+ # retrieve connections, since the console does not display passwords.
2029
+ # Set this parameter where the caller may not have permission to use the
2030
+ # KMS key to decrypt the password, but does have permission to access
2031
+ # the rest of the connection metadata (that is, the other connection
2032
+ # properties).
2033
+ #
2025
2034
  # @return [Types::GetConnectionResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
2026
2035
  #
2027
2036
  # * {Types::GetConnectionResponse#connection #connection} => Types::Connection
@@ -2031,6 +2040,7 @@ module Aws::Glue
2031
2040
  # resp = client.get_connection({
2032
2041
  # catalog_id: "CatalogIdString",
2033
2042
  # name: "NameString", # required
2043
+ # hide_password: false,
2034
2044
  # })
2035
2045
  #
2036
2046
  # @example Response structure
@@ -2068,6 +2078,15 @@ module Aws::Glue
2068
2078
  # @option params [Types::GetConnectionsFilter] :filter
2069
2079
  # A filter that controls which connections will be returned.
2070
2080
  #
2081
+ # @option params [Boolean] :hide_password
2082
+ # Allow you to retrieve the connection metadata without displaying the
2083
+ # password. For instance, the AWS Glue console uses this flag to
2084
+ # retrieve connections, since the console does not display passwords.
2085
+ # Set this parameter where the caller may not have permission to use the
2086
+ # KMS key to decrypt the password, but does have permission to access
2087
+ # the rest of the connection metadata (that is, the other connection
2088
+ # properties).
2089
+ #
2071
2090
  # @option params [String] :next_token
2072
2091
  # A continuation token, if this is a continuation call.
2073
2092
  #
@@ -2087,6 +2106,7 @@ module Aws::Glue
2087
2106
  # match_criteria: ["NameString"],
2088
2107
  # connection_type: "JDBC", # accepts JDBC, SFTP
2089
2108
  # },
2109
+ # hide_password: false,
2090
2110
  # next_token: "Token",
2091
2111
  # max_results: 1,
2092
2112
  # })
@@ -2317,6 +2337,8 @@ module Aws::Glue
2317
2337
  #
2318
2338
  # resp.data_catalog_encryption_settings.encryption_at_rest.catalog_encryption_mode #=> String, one of "DISABLED", "SSE-KMS"
2319
2339
  # resp.data_catalog_encryption_settings.encryption_at_rest.sse_aws_kms_key_id #=> String
2340
+ # resp.data_catalog_encryption_settings.connection_password_encryption.return_connection_password_encrypted #=> Boolean
2341
+ # resp.data_catalog_encryption_settings.connection_password_encryption.aws_kms_key_id #=> String
2320
2342
  #
2321
2343
  # @see http://docs.aws.amazon.com/goto/WebAPI/glue-2017-03-31/GetDataCatalogEncryptionSettings AWS API Documentation
2322
2344
  #
@@ -3922,6 +3944,10 @@ module Aws::Glue
3922
3944
  # catalog_encryption_mode: "DISABLED", # required, accepts DISABLED, SSE-KMS
3923
3945
  # sse_aws_kms_key_id: "NameString",
3924
3946
  # },
3947
+ # connection_password_encryption: {
3948
+ # return_connection_password_encrypted: false, # required
3949
+ # aws_kms_key_id: "NameString",
3950
+ # },
3925
3951
  # },
3926
3952
  # })
3927
3953
  #
@@ -4937,7 +4963,7 @@ module Aws::Glue
4937
4963
  params: params,
4938
4964
  config: config)
4939
4965
  context[:gem_name] = 'aws-sdk-glue'
4940
- context[:gem_version] = '1.21.0'
4966
+ context[:gem_version] = '1.22.0'
4941
4967
  Seahorse::Client::Request.new(handlers, context)
4942
4968
  end
4943
4969
 
@@ -77,6 +77,7 @@ module Aws::Glue
77
77
  ConnectionInput = Shapes::StructureShape.new(name: 'ConnectionInput')
78
78
  ConnectionList = Shapes::ListShape.new(name: 'ConnectionList')
79
79
  ConnectionName = Shapes::StringShape.new(name: 'ConnectionName')
80
+ ConnectionPasswordEncryption = Shapes::StructureShape.new(name: 'ConnectionPasswordEncryption')
80
81
  ConnectionProperties = Shapes::MapShape.new(name: 'ConnectionProperties')
81
82
  ConnectionPropertyKey = Shapes::StringShape.new(name: 'ConnectionPropertyKey')
82
83
  ConnectionType = Shapes::StringShape.new(name: 'ConnectionType')
@@ -611,6 +612,10 @@ module Aws::Glue
611
612
 
612
613
  ConnectionList.member = Shapes::ShapeRef.new(shape: Connection)
613
614
 
615
+ ConnectionPasswordEncryption.add_member(:return_connection_password_encrypted, Shapes::ShapeRef.new(shape: Boolean, required: true, location_name: "ReturnConnectionPasswordEncrypted"))
616
+ ConnectionPasswordEncryption.add_member(:aws_kms_key_id, Shapes::ShapeRef.new(shape: NameString, location_name: "AwsKmsKeyId"))
617
+ ConnectionPasswordEncryption.struct_class = Types::ConnectionPasswordEncryption
618
+
614
619
  ConnectionProperties.key = Shapes::ShapeRef.new(shape: ConnectionPropertyKey)
615
620
  ConnectionProperties.value = Shapes::ShapeRef.new(shape: ValueString)
616
621
 
@@ -809,6 +814,7 @@ module Aws::Glue
809
814
  DagNodes.member = Shapes::ShapeRef.new(shape: CodeGenNode)
810
815
 
811
816
  DataCatalogEncryptionSettings.add_member(:encryption_at_rest, Shapes::ShapeRef.new(shape: EncryptionAtRest, location_name: "EncryptionAtRest"))
817
+ DataCatalogEncryptionSettings.add_member(:connection_password_encryption, Shapes::ShapeRef.new(shape: ConnectionPasswordEncryption, location_name: "ConnectionPasswordEncryption"))
812
818
  DataCatalogEncryptionSettings.struct_class = Types::DataCatalogEncryptionSettings
813
819
 
814
820
  Database.add_member(:name, Shapes::ShapeRef.new(shape: NameString, required: true, location_name: "Name"))
@@ -985,6 +991,7 @@ module Aws::Glue
985
991
 
986
992
  GetConnectionRequest.add_member(:catalog_id, Shapes::ShapeRef.new(shape: CatalogIdString, location_name: "CatalogId"))
987
993
  GetConnectionRequest.add_member(:name, Shapes::ShapeRef.new(shape: NameString, required: true, location_name: "Name"))
994
+ GetConnectionRequest.add_member(:hide_password, Shapes::ShapeRef.new(shape: Boolean, location_name: "HidePassword"))
988
995
  GetConnectionRequest.struct_class = Types::GetConnectionRequest
989
996
 
990
997
  GetConnectionResponse.add_member(:connection, Shapes::ShapeRef.new(shape: Connection, location_name: "Connection"))
@@ -996,6 +1003,7 @@ module Aws::Glue
996
1003
 
997
1004
  GetConnectionsRequest.add_member(:catalog_id, Shapes::ShapeRef.new(shape: CatalogIdString, location_name: "CatalogId"))
998
1005
  GetConnectionsRequest.add_member(:filter, Shapes::ShapeRef.new(shape: GetConnectionsFilter, location_name: "Filter"))
1006
+ GetConnectionsRequest.add_member(:hide_password, Shapes::ShapeRef.new(shape: Boolean, location_name: "HidePassword"))
999
1007
  GetConnectionsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "NextToken"))
1000
1008
  GetConnectionsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PageSize, location_name: "MaxResults"))
1001
1009
  GetConnectionsRequest.struct_class = Types::GetConnectionsRequest
@@ -826,6 +826,11 @@ module Aws::Glue
826
826
  #
827
827
  # * `PASSWORD` - A password, if one is used, for the user name.
828
828
  #
829
+ # * `ENCRYPTED_PASSWORD` - When you enable connection password
830
+ # protection by setting `ConnectionPasswordEncryption` in the Data
831
+ # Catalog encryption settings, this field stores the key you
832
+ # designate to encrypt the password.
833
+ #
829
834
  # * `JDBC_DRIVER_JAR_URI` - The S3 path of the a jar file that
830
835
  # contains the JDBC driver to use.
831
836
  #
@@ -938,6 +943,55 @@ module Aws::Glue
938
943
  include Aws::Structure
939
944
  end
940
945
 
946
+ # The data structure used by the Data Catalog to encrypt the password as
947
+ # part of `CreateConnection` or `UpdateConnection` and store it in the
948
+ # `ENCRYPTED_PASSWORD` field in the connection properties. You can
949
+ # enable catalog encryption or only password encryption.
950
+ #
951
+ # When a `CreationConnection` request arrives containing a password, the
952
+ # Data Catalog first encrypts the password using your KMS key, and then
953
+ # encrypts the whole connection object again if catalog encryption is
954
+ # also enabled.
955
+ #
956
+ # This encryption requires that you set KMS key permissions to enable or
957
+ # restrict access on the password key according to your security
958
+ # requirements. For example, you may want only admin users to have
959
+ # decrypt permission on the password key.
960
+ #
961
+ # @note When making an API call, you may pass ConnectionPasswordEncryption
962
+ # data as a hash:
963
+ #
964
+ # {
965
+ # return_connection_password_encrypted: false, # required
966
+ # aws_kms_key_id: "NameString",
967
+ # }
968
+ #
969
+ # @!attribute [rw] return_connection_password_encrypted
970
+ # When the `ReturnConnectionPasswordEncrypted` flag is set to
971
+ # "true", passwords remain encrypted in the responses of
972
+ # `GetConnection` and `GetConnections`. This encryption takes effect
973
+ # independently from catalog encryption.
974
+ # @return [Boolean]
975
+ #
976
+ # @!attribute [rw] aws_kms_key_id
977
+ # A KMS key used to protect access to the JDBC source.
978
+ #
979
+ # All users in your account should be granted the `kms:encrypt`
980
+ # permission to encrypt passwords before storing them in the Data
981
+ # Catalog (through the AWS Glue `CreateConnection` operation).
982
+ #
983
+ # The decrypt permission should be granted only to KMS key admins and
984
+ # IAM roles designated for AWS Glue crawlers.
985
+ # @return [String]
986
+ #
987
+ # @see http://docs.aws.amazon.com/goto/WebAPI/glue-2017-03-31/ConnectionPasswordEncryption AWS API Documentation
988
+ #
989
+ class ConnectionPasswordEncryption < Struct.new(
990
+ :return_connection_password_encrypted,
991
+ :aws_kms_key_id)
992
+ include Aws::Structure
993
+ end
994
+
941
995
  # Specifies the connections used by a job.
942
996
  #
943
997
  # @note When making an API call, you may pass ConnectionsList
@@ -2302,16 +2356,29 @@ module Aws::Glue
2302
2356
  # catalog_encryption_mode: "DISABLED", # required, accepts DISABLED, SSE-KMS
2303
2357
  # sse_aws_kms_key_id: "NameString",
2304
2358
  # },
2359
+ # connection_password_encryption: {
2360
+ # return_connection_password_encrypted: false, # required
2361
+ # aws_kms_key_id: "NameString",
2362
+ # },
2305
2363
  # }
2306
2364
  #
2307
2365
  # @!attribute [rw] encryption_at_rest
2308
2366
  # Specifies encryption-at-rest configuration for the Data Catalog.
2309
2367
  # @return [Types::EncryptionAtRest]
2310
2368
  #
2369
+ # @!attribute [rw] connection_password_encryption
2370
+ # When password protection is enabled, the Data Catalog uses a
2371
+ # customer-provided key to encrypt the password as part of
2372
+ # `CreateConnection` or `UpdateConnection` and store it in the
2373
+ # `ENCRYPTED_PASSWORD` field in the connection properties. You can
2374
+ # enable catalog encryption or only password encryption.
2375
+ # @return [Types::ConnectionPasswordEncryption]
2376
+ #
2311
2377
  # @see http://docs.aws.amazon.com/goto/WebAPI/glue-2017-03-31/DataCatalogEncryptionSettings AWS API Documentation
2312
2378
  #
2313
2379
  class DataCatalogEncryptionSettings < Struct.new(
2314
- :encryption_at_rest)
2380
+ :encryption_at_rest,
2381
+ :connection_password_encryption)
2315
2382
  include Aws::Structure
2316
2383
  end
2317
2384
 
@@ -3200,6 +3267,7 @@ module Aws::Glue
3200
3267
  # {
3201
3268
  # catalog_id: "CatalogIdString",
3202
3269
  # name: "NameString", # required
3270
+ # hide_password: false,
3203
3271
  # }
3204
3272
  #
3205
3273
  # @!attribute [rw] catalog_id
@@ -3211,11 +3279,22 @@ module Aws::Glue
3211
3279
  # The name of the connection definition to retrieve.
3212
3280
  # @return [String]
3213
3281
  #
3282
+ # @!attribute [rw] hide_password
3283
+ # Allow you to retrieve the connection metadata without displaying the
3284
+ # password. For instance, the AWS Glue console uses this flag to
3285
+ # retrieve connections, since the console does not display passwords.
3286
+ # Set this parameter where the caller may not have permission to use
3287
+ # the KMS key to decrypt the password, but does have permission to
3288
+ # access the rest of the connection metadata (that is, the other
3289
+ # connection properties).
3290
+ # @return [Boolean]
3291
+ #
3214
3292
  # @see http://docs.aws.amazon.com/goto/WebAPI/glue-2017-03-31/GetConnectionRequest AWS API Documentation
3215
3293
  #
3216
3294
  class GetConnectionRequest < Struct.new(
3217
3295
  :catalog_id,
3218
- :name)
3296
+ :name,
3297
+ :hide_password)
3219
3298
  include Aws::Structure
3220
3299
  end
3221
3300
 
@@ -3268,6 +3347,7 @@ module Aws::Glue
3268
3347
  # match_criteria: ["NameString"],
3269
3348
  # connection_type: "JDBC", # accepts JDBC, SFTP
3270
3349
  # },
3350
+ # hide_password: false,
3271
3351
  # next_token: "Token",
3272
3352
  # max_results: 1,
3273
3353
  # }
@@ -3281,6 +3361,16 @@ module Aws::Glue
3281
3361
  # A filter that controls which connections will be returned.
3282
3362
  # @return [Types::GetConnectionsFilter]
3283
3363
  #
3364
+ # @!attribute [rw] hide_password
3365
+ # Allow you to retrieve the connection metadata without displaying the
3366
+ # password. For instance, the AWS Glue console uses this flag to
3367
+ # retrieve connections, since the console does not display passwords.
3368
+ # Set this parameter where the caller may not have permission to use
3369
+ # the KMS key to decrypt the password, but does have permission to
3370
+ # access the rest of the connection metadata (that is, the other
3371
+ # connection properties).
3372
+ # @return [Boolean]
3373
+ #
3284
3374
  # @!attribute [rw] next_token
3285
3375
  # A continuation token, if this is a continuation call.
3286
3376
  # @return [String]
@@ -3294,6 +3384,7 @@ module Aws::Glue
3294
3384
  class GetConnectionsRequest < Struct.new(
3295
3385
  :catalog_id,
3296
3386
  :filter,
3387
+ :hide_password,
3297
3388
  :next_token,
3298
3389
  :max_results)
3299
3390
  include Aws::Structure
@@ -5766,6 +5857,10 @@ module Aws::Glue
5766
5857
  # catalog_encryption_mode: "DISABLED", # required, accepts DISABLED, SSE-KMS
5767
5858
  # sse_aws_kms_key_id: "NameString",
5768
5859
  # },
5860
+ # connection_password_encryption: {
5861
+ # return_connection_password_encrypted: false, # required
5862
+ # aws_kms_key_id: "NameString",
5863
+ # },
5769
5864
  # },
5770
5865
  # }
5771
5866
  #
@@ -6537,6 +6632,12 @@ module Aws::Glue
6537
6632
  # @!attribute [rw] partition_keys
6538
6633
  # A list of columns by which the table is partitioned. Only primitive
6539
6634
  # types are supported as partition keys.
6635
+ #
6636
+ # When creating a table used by Athena, and you do not specify any
6637
+ # `partitionKeys`, you must at least set the value of `partitionKeys`
6638
+ # to an empty list. For example:
6639
+ #
6640
+ # `"PartitionKeys": []`
6540
6641
  # @return [Array<Types::Column>]
6541
6642
  #
6542
6643
  # @!attribute [rw] view_original_text
@@ -6701,6 +6802,12 @@ module Aws::Glue
6701
6802
  # @!attribute [rw] partition_keys
6702
6803
  # A list of columns by which the table is partitioned. Only primitive
6703
6804
  # types are supported as partition keys.
6805
+ #
6806
+ # When creating a table used by Athena, and you do not specify any
6807
+ # `partitionKeys`, you must at least set the value of `partitionKeys`
6808
+ # to an empty list. For example:
6809
+ #
6810
+ # `"PartitionKeys": []`
6704
6811
  # @return [Array<Types::Column>]
6705
6812
  #
6706
6813
  # @!attribute [rw] view_original_text
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-glue
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.21.0
4
+ version: 1.22.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2018-11-20 00:00:00.000000000 Z
11
+ date: 2018-12-12 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core