aws-sdk-lakeformation 1.38.0 → 1.40.0

Sign up to get free protection for your applications and to get access to all the features.
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 3a54879715e87bc30c62dde0449163504fbf60dfd2fb5c18d572ae394914c27a
4
- data.tar.gz: 6abef8b81607d04429ea1efb470a9b0d96cf8fbe12d8bf4d869a9bec95f074a3
3
+ metadata.gz: 933b0beddd707450ce96a2e22cfc3b12b7a86b9d6a121cf1179e2c0387b5553f
4
+ data.tar.gz: cc84de94ca6cc95316c0fa08f535accd1415a2c8a73d00e308635608d0c68398
5
5
  SHA512:
6
- metadata.gz: 6819ea5c7b11217a6f72f5b760531a66fdd29ec6ce9bd83990a070f0ee9199da4eaf23a8592029f6a96ab38b787c7ae990d97f00569fb629ca9c92132ed7ed94
7
- data.tar.gz: ee32c6431fa5a07ccae41c5123334a5ee055d41401bbc1f841d0339fda5bef3b153789876da9ac5c6f0a8fdfa8620ad585450308400ae9bf211f8add52e3ddb7
6
+ metadata.gz: 5c930771d18d7c1ba931c90a32718a9c7a72c220064cdcd5a076f26d94575c1af2e41ee06d6f5da75ccfc62eb97832fb7f95f0ef7e585d5d8ec2e1775d095937
7
+ data.tar.gz: 92cfeb17858585f74e2874448e82d834b5ae9680c7ca1002527dd9edb8c178d56711554715d2c47356ce8f17469c9e9c594d63769f05606715ddcc696c9c5811
data/CHANGELOG.md CHANGED
@@ -1,6 +1,16 @@
1
1
  Unreleased Changes
2
2
  ------------------
3
3
 
4
+ 1.40.0 (2023-07-17)
5
+ ------------------
6
+
7
+ * Feature - Adds supports for ReadOnlyAdmins and AllowFullTableExternalDataAccess. Adds NESTED_PERMISSION and NESTED_CELL_PERMISSION to SUPPORTED_PERMISSION_TYPES enum. Adds CREATE_LF_TAG on catalog resource and ALTER, DROP, and GRANT_WITH_LF_TAG_EXPRESSION on LF Tag resource.
8
+
9
+ 1.39.0 (2023-07-11)
10
+ ------------------
11
+
12
+ * Feature - Code Generated Changes, see `./build_tools` or `aws-sdk-core`'s CHANGELOG.md for details.
13
+
4
14
  1.38.0 (2023-07-06)
5
15
  ------------------
6
16
 
data/VERSION CHANGED
@@ -1 +1 @@
1
- 1.38.0
1
+ 1.40.0
@@ -216,6 +216,10 @@ module Aws::LakeFormation
216
216
  # @option options [Boolean] :endpoint_discovery (false)
217
217
  # When set to `true`, endpoint discovery will be enabled for operations when available.
218
218
  #
219
+ # @option options [Boolean] :ignore_configured_endpoint_urls
220
+ # Setting to true disables use of endpoint URLs provided via environment
221
+ # variables and the shared configuration file.
222
+ #
219
223
  # @option options [Aws::Log::Formatter] :log_formatter (Aws::Log::Formatter.default)
220
224
  # The log formatter.
221
225
  #
@@ -625,8 +629,8 @@ module Aws::LakeFormation
625
629
  # ],
626
630
  # },
627
631
  # },
628
- # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
629
- # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
632
+ # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
633
+ # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
630
634
  # },
631
635
  # ],
632
636
  # })
@@ -665,9 +669,9 @@ module Aws::LakeFormation
665
669
  # resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values #=> Array
666
670
  # resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values[0] #=> String
667
671
  # resp.failures[0].request_entry.permissions #=> Array
668
- # resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
672
+ # resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
669
673
  # resp.failures[0].request_entry.permissions_with_grant_option #=> Array
670
- # resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
674
+ # resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
671
675
  # resp.failures[0].error.error_code #=> String
672
676
  # resp.failures[0].error.error_message #=> String
673
677
  #
@@ -755,8 +759,8 @@ module Aws::LakeFormation
755
759
  # ],
756
760
  # },
757
761
  # },
758
- # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
759
- # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
762
+ # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
763
+ # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
760
764
  # },
761
765
  # ],
762
766
  # })
@@ -795,9 +799,9 @@ module Aws::LakeFormation
795
799
  # resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values #=> Array
796
800
  # resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values[0] #=> String
797
801
  # resp.failures[0].request_entry.permissions #=> Array
798
- # resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
802
+ # resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
799
803
  # resp.failures[0].request_entry.permissions_with_grant_option #=> Array
800
- # resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
804
+ # resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
801
805
  # resp.failures[0].error.error_code #=> String
802
806
  # resp.failures[0].error.error_message #=> String
803
807
  #
@@ -1248,19 +1252,22 @@ module Aws::LakeFormation
1248
1252
  #
1249
1253
  # resp.data_lake_settings.data_lake_admins #=> Array
1250
1254
  # resp.data_lake_settings.data_lake_admins[0].data_lake_principal_identifier #=> String
1255
+ # resp.data_lake_settings.read_only_admins #=> Array
1256
+ # resp.data_lake_settings.read_only_admins[0].data_lake_principal_identifier #=> String
1251
1257
  # resp.data_lake_settings.create_database_default_permissions #=> Array
1252
1258
  # resp.data_lake_settings.create_database_default_permissions[0].principal.data_lake_principal_identifier #=> String
1253
1259
  # resp.data_lake_settings.create_database_default_permissions[0].permissions #=> Array
1254
- # resp.data_lake_settings.create_database_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
1260
+ # resp.data_lake_settings.create_database_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
1255
1261
  # resp.data_lake_settings.create_table_default_permissions #=> Array
1256
1262
  # resp.data_lake_settings.create_table_default_permissions[0].principal.data_lake_principal_identifier #=> String
1257
1263
  # resp.data_lake_settings.create_table_default_permissions[0].permissions #=> Array
1258
- # resp.data_lake_settings.create_table_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
1264
+ # resp.data_lake_settings.create_table_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
1259
1265
  # resp.data_lake_settings.parameters #=> Hash
1260
1266
  # resp.data_lake_settings.parameters["KeyString"] #=> String
1261
1267
  # resp.data_lake_settings.trusted_resource_owners #=> Array
1262
1268
  # resp.data_lake_settings.trusted_resource_owners[0] #=> String
1263
1269
  # resp.data_lake_settings.allow_external_data_filtering #=> Boolean
1270
+ # resp.data_lake_settings.allow_full_table_external_data_access #=> Boolean
1264
1271
  # resp.data_lake_settings.external_data_filtering_allow_list #=> Array
1265
1272
  # resp.data_lake_settings.external_data_filtering_allow_list[0].data_lake_principal_identifier #=> String
1266
1273
  # resp.data_lake_settings.authorized_session_tag_value_list #=> Array
@@ -1346,9 +1353,9 @@ module Aws::LakeFormation
1346
1353
  # resp.permissions[0].resource.lf_tag_policy.expression[0].tag_values #=> Array
1347
1354
  # resp.permissions[0].resource.lf_tag_policy.expression[0].tag_values[0] #=> String
1348
1355
  # resp.permissions[0].permissions #=> Array
1349
- # resp.permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
1356
+ # resp.permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
1350
1357
  # resp.permissions[0].permissions_with_grant_option #=> Array
1351
- # resp.permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
1358
+ # resp.permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
1352
1359
  # resp.permissions[0].additional_details.resource_share #=> Array
1353
1360
  # resp.permissions[0].additional_details.resource_share[0] #=> String
1354
1361
  # resp.next_token #=> String
@@ -1687,7 +1694,7 @@ module Aws::LakeFormation
1687
1694
  # A structure representing context to access a resource (column names,
1688
1695
  # query ID, etc).
1689
1696
  #
1690
- # @option params [required, Array<String>] :supported_permission_types
1697
+ # @option params [Array<String>] :supported_permission_types
1691
1698
  # A list of supported permission types for the partition. Valid values
1692
1699
  # are `COLUMN_PERMISSION` and `CELL_FILTER_PERMISSION`.
1693
1700
  #
@@ -1705,12 +1712,12 @@ module Aws::LakeFormation
1705
1712
  # partition: { # required
1706
1713
  # values: ["ValueString"], # required
1707
1714
  # },
1708
- # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
1715
+ # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
1709
1716
  # duration_seconds: 1,
1710
1717
  # audit_context: {
1711
1718
  # additional_audit_context: "AuditContextString",
1712
1719
  # },
1713
- # supported_permission_types: ["COLUMN_PERMISSION"], # required, accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION
1720
+ # supported_permission_types: ["COLUMN_PERMISSION"], # accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION, NESTED_PERMISSION, NESTED_CELL_PERMISSION
1714
1721
  # })
1715
1722
  #
1716
1723
  # @example Response structure
@@ -1751,7 +1758,7 @@ module Aws::LakeFormation
1751
1758
  # A structure representing context to access a resource (column names,
1752
1759
  # query ID, etc).
1753
1760
  #
1754
- # @option params [required, Array<String>] :supported_permission_types
1761
+ # @option params [Array<String>] :supported_permission_types
1755
1762
  # A list of supported permission types for the table. Valid values are
1756
1763
  # `COLUMN_PERMISSION` and `CELL_FILTER_PERMISSION`.
1757
1764
  #
@@ -1766,12 +1773,12 @@ module Aws::LakeFormation
1766
1773
  #
1767
1774
  # resp = client.get_temporary_glue_table_credentials({
1768
1775
  # table_arn: "ResourceArnString", # required
1769
- # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
1776
+ # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
1770
1777
  # duration_seconds: 1,
1771
1778
  # audit_context: {
1772
1779
  # additional_audit_context: "AuditContextString",
1773
1780
  # },
1774
- # supported_permission_types: ["COLUMN_PERMISSION"], # required, accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION
1781
+ # supported_permission_types: ["COLUMN_PERMISSION"], # accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION, NESTED_PERMISSION, NESTED_CELL_PERMISSION
1775
1782
  # })
1776
1783
  #
1777
1784
  # @example Response structure
@@ -1981,8 +1988,8 @@ module Aws::LakeFormation
1981
1988
  # ],
1982
1989
  # },
1983
1990
  # },
1984
- # permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
1985
- # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
1991
+ # permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
1992
+ # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
1986
1993
  # })
1987
1994
  #
1988
1995
  # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/GrantPermissions AWS API Documentation
@@ -2119,7 +2126,7 @@ module Aws::LakeFormation
2119
2126
  #
2120
2127
  #
2121
2128
  #
2122
- # [1]: https://docs-aws.amazon.com/lake-formation/latest/dg/security-data-access.html
2129
+ # [1]: https://docs.aws.amazon.com/lake-formation/latest/dg/security-data-access.html
2123
2130
  #
2124
2131
  # @option params [String] :catalog_id
2125
2132
  # The identifier for the Data Catalog. By default, the account ID. The
@@ -2252,9 +2259,9 @@ module Aws::LakeFormation
2252
2259
  # resp.principal_resource_permissions[0].resource.lf_tag_policy.expression[0].tag_values #=> Array
2253
2260
  # resp.principal_resource_permissions[0].resource.lf_tag_policy.expression[0].tag_values[0] #=> String
2254
2261
  # resp.principal_resource_permissions[0].permissions #=> Array
2255
- # resp.principal_resource_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
2262
+ # resp.principal_resource_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
2256
2263
  # resp.principal_resource_permissions[0].permissions_with_grant_option #=> Array
2257
- # resp.principal_resource_permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
2264
+ # resp.principal_resource_permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
2258
2265
  # resp.principal_resource_permissions[0].additional_details.resource_share #=> Array
2259
2266
  # resp.principal_resource_permissions[0].additional_details.resource_share[0] #=> String
2260
2267
  # resp.next_token #=> String
@@ -2471,12 +2478,17 @@ module Aws::LakeFormation
2471
2478
  # data_lake_principal_identifier: "DataLakePrincipalString",
2472
2479
  # },
2473
2480
  # ],
2481
+ # read_only_admins: [
2482
+ # {
2483
+ # data_lake_principal_identifier: "DataLakePrincipalString",
2484
+ # },
2485
+ # ],
2474
2486
  # create_database_default_permissions: [
2475
2487
  # {
2476
2488
  # principal: {
2477
2489
  # data_lake_principal_identifier: "DataLakePrincipalString",
2478
2490
  # },
2479
- # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
2491
+ # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
2480
2492
  # },
2481
2493
  # ],
2482
2494
  # create_table_default_permissions: [
@@ -2484,7 +2496,7 @@ module Aws::LakeFormation
2484
2496
  # principal: {
2485
2497
  # data_lake_principal_identifier: "DataLakePrincipalString",
2486
2498
  # },
2487
- # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
2499
+ # permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
2488
2500
  # },
2489
2501
  # ],
2490
2502
  # parameters: {
@@ -2492,6 +2504,7 @@ module Aws::LakeFormation
2492
2504
  # },
2493
2505
  # trusted_resource_owners: ["CatalogIdString"],
2494
2506
  # allow_external_data_filtering: false,
2507
+ # allow_full_table_external_data_access: false,
2495
2508
  # external_data_filtering_allow_list: [
2496
2509
  # {
2497
2510
  # data_lake_principal_identifier: "DataLakePrincipalString",
@@ -2764,8 +2777,8 @@ module Aws::LakeFormation
2764
2777
  # ],
2765
2778
  # },
2766
2779
  # },
2767
- # permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
2768
- # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
2780
+ # permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
2781
+ # permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
2769
2782
  # })
2770
2783
  #
2771
2784
  # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/RevokePermissions AWS API Documentation
@@ -3221,7 +3234,7 @@ module Aws::LakeFormation
3221
3234
  params: params,
3222
3235
  config: config)
3223
3236
  context[:gem_name] = 'aws-sdk-lakeformation'
3224
- context[:gem_version] = '1.38.0'
3237
+ context[:gem_version] = '1.40.0'
3225
3238
  Seahorse::Client::Request.new(handlers, context)
3226
3239
  end
3227
3240
 
@@ -409,11 +409,13 @@ module Aws::LakeFormation
409
409
  DataLakePrincipalList.member = Shapes::ShapeRef.new(shape: DataLakePrincipal)
410
410
 
411
411
  DataLakeSettings.add_member(:data_lake_admins, Shapes::ShapeRef.new(shape: DataLakePrincipalList, location_name: "DataLakeAdmins"))
412
+ DataLakeSettings.add_member(:read_only_admins, Shapes::ShapeRef.new(shape: DataLakePrincipalList, location_name: "ReadOnlyAdmins"))
412
413
  DataLakeSettings.add_member(:create_database_default_permissions, Shapes::ShapeRef.new(shape: PrincipalPermissionsList, location_name: "CreateDatabaseDefaultPermissions"))
413
414
  DataLakeSettings.add_member(:create_table_default_permissions, Shapes::ShapeRef.new(shape: PrincipalPermissionsList, location_name: "CreateTableDefaultPermissions"))
414
415
  DataLakeSettings.add_member(:parameters, Shapes::ShapeRef.new(shape: ParametersMap, location_name: "Parameters"))
415
416
  DataLakeSettings.add_member(:trusted_resource_owners, Shapes::ShapeRef.new(shape: TrustedResourceOwners, location_name: "TrustedResourceOwners"))
416
417
  DataLakeSettings.add_member(:allow_external_data_filtering, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "AllowExternalDataFiltering"))
418
+ DataLakeSettings.add_member(:allow_full_table_external_data_access, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "AllowFullTableExternalDataAccess"))
417
419
  DataLakeSettings.add_member(:external_data_filtering_allow_list, Shapes::ShapeRef.new(shape: DataLakePrincipalList, location_name: "ExternalDataFilteringAllowList"))
418
420
  DataLakeSettings.add_member(:authorized_session_tag_value_list, Shapes::ShapeRef.new(shape: AuthorizedSessionTagValueList, location_name: "AuthorizedSessionTagValueList"))
419
421
  DataLakeSettings.struct_class = Types::DataLakeSettings
@@ -583,7 +585,7 @@ module Aws::LakeFormation
583
585
  GetTemporaryGluePartitionCredentialsRequest.add_member(:permissions, Shapes::ShapeRef.new(shape: PermissionList, location_name: "Permissions"))
584
586
  GetTemporaryGluePartitionCredentialsRequest.add_member(:duration_seconds, Shapes::ShapeRef.new(shape: CredentialTimeoutDurationSecondInteger, location_name: "DurationSeconds"))
585
587
  GetTemporaryGluePartitionCredentialsRequest.add_member(:audit_context, Shapes::ShapeRef.new(shape: AuditContext, location_name: "AuditContext"))
586
- GetTemporaryGluePartitionCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, required: true, location_name: "SupportedPermissionTypes"))
588
+ GetTemporaryGluePartitionCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, location_name: "SupportedPermissionTypes"))
587
589
  GetTemporaryGluePartitionCredentialsRequest.struct_class = Types::GetTemporaryGluePartitionCredentialsRequest
588
590
 
589
591
  GetTemporaryGluePartitionCredentialsResponse.add_member(:access_key_id, Shapes::ShapeRef.new(shape: AccessKeyIdString, location_name: "AccessKeyId"))
@@ -596,7 +598,7 @@ module Aws::LakeFormation
596
598
  GetTemporaryGlueTableCredentialsRequest.add_member(:permissions, Shapes::ShapeRef.new(shape: PermissionList, location_name: "Permissions"))
597
599
  GetTemporaryGlueTableCredentialsRequest.add_member(:duration_seconds, Shapes::ShapeRef.new(shape: CredentialTimeoutDurationSecondInteger, location_name: "DurationSeconds"))
598
600
  GetTemporaryGlueTableCredentialsRequest.add_member(:audit_context, Shapes::ShapeRef.new(shape: AuditContext, location_name: "AuditContext"))
599
- GetTemporaryGlueTableCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, required: true, location_name: "SupportedPermissionTypes"))
601
+ GetTemporaryGlueTableCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, location_name: "SupportedPermissionTypes"))
600
602
  GetTemporaryGlueTableCredentialsRequest.struct_class = Types::GetTemporaryGlueTableCredentialsRequest
601
603
 
602
604
  GetTemporaryGlueTableCredentialsResponse.add_member(:access_key_id, Shapes::ShapeRef.new(shape: AccessKeyIdString, location_name: "AccessKeyId"))
@@ -486,7 +486,10 @@ module Aws::LakeFormation
486
486
  # @return [Types::RowFilter]
487
487
  #
488
488
  # @!attribute [rw] column_names
489
- # A list of column names.
489
+ # A list of column names and/or nested column attributes. When
490
+ # specifying nested attributes, use a qualified dot (.) delimited
491
+ # format such as "address"."zip". Nested attributes within this
492
+ # list may not exceed a depth of 5.
490
493
  # @return [Array<String>]
491
494
  #
492
495
  # @!attribute [rw] column_wildcard
@@ -569,6 +572,12 @@ module Aws::LakeFormation
569
572
  # users or IAM roles.
570
573
  # @return [Array<Types::DataLakePrincipal>]
571
574
  #
575
+ # @!attribute [rw] read_only_admins
576
+ # A list of Lake Formation principals with only view access to the
577
+ # resources, without the ability to make changes. Supported principals
578
+ # are IAM users or IAM roles.
579
+ # @return [Array<Types::DataLakePrincipal>]
580
+ #
572
581
  # @!attribute [rw] create_database_default_permissions
573
582
  # Specifies whether access control on newly created database is
574
583
  # managed by Lake Formation permissions or exclusively by IAM
@@ -642,12 +651,18 @@ module Aws::LakeFormation
642
651
  # If false or null, no Amazon EMR clusters will be able to access data
643
652
  # in Amazon S3 locations that are registered with Lake Formation.
644
653
  #
645
- # For more information, see [(Optional) Allow Data Filtering on Amazon
646
- # EMR][1].
654
+ # For more information, see [(Optional) Allow external data
655
+ # filtering][1].
647
656
  #
648
657
  #
649
658
  #
650
- # [1]: https://docs-aws.amazon.com/lake-formation/latest/dg/getting-started-setup.html#emr-switch
659
+ # [1]: https://docs.aws.amazon.com/lake-formation/latest/dg/initial-LF-setup.html#external-data-filter
660
+ # @return [Boolean]
661
+ #
662
+ # @!attribute [rw] allow_full_table_external_data_access
663
+ # Whether to allow a third-party query engine to get data access
664
+ # credentials without session tags when a caller has full data access
665
+ # permissions.
651
666
  # @return [Boolean]
652
667
  #
653
668
  # @!attribute [rw] external_data_filtering_allow_list
@@ -669,11 +684,13 @@ module Aws::LakeFormation
669
684
  #
670
685
  class DataLakeSettings < Struct.new(
671
686
  :data_lake_admins,
687
+ :read_only_admins,
672
688
  :create_database_default_permissions,
673
689
  :create_table_default_permissions,
674
690
  :parameters,
675
691
  :trusted_resource_owners,
676
692
  :allow_external_data_filtering,
693
+ :allow_full_table_external_data_access,
677
694
  :external_data_filtering_allow_list,
678
695
  :authorized_session_tag_value_list)
679
696
  SENSITIVE = []
@@ -52,6 +52,6 @@ require_relative 'aws-sdk-lakeformation/customizations'
52
52
  # @!group service
53
53
  module Aws::LakeFormation
54
54
 
55
- GEM_VERSION = '1.38.0'
55
+ GEM_VERSION = '1.40.0'
56
56
 
57
57
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: aws-sdk-lakeformation
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.38.0
4
+ version: 1.40.0
5
5
  platform: ruby
6
6
  authors:
7
7
  - Amazon Web Services
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-07-06 00:00:00.000000000 Z
11
+ date: 2023-07-17 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: aws-sdk-core