RubyGems - aws-sdk-lakeformation - Versions diffs - 1.39.0 → 1.41.0 - Mend

aws-sdk-lakeformation 1.39.0 → 1.41.0

Files changed (10) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +10 -0
data/VERSION +1 -1
data/lib/aws-sdk-lakeformation/client.rb +339 -28
data/lib/aws-sdk-lakeformation/client_api.rb +93 -2
data/lib/aws-sdk-lakeformation/endpoints.rb +42 -0
data/lib/aws-sdk-lakeformation/plugins/endpoints.rb +6 -0
data/lib/aws-sdk-lakeformation/types.rb +183 -8
data/lib/aws-sdk-lakeformation.rb +1 -1
metadata +2 -2

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 6e64dedf2c8920a0aca915842cb27bd64913d3c025e3ffc85943c93dbbb80e32
-  data.tar.gz: 85e8e8cf765345d405f8fedaa031a0859e7170aae36296e287681d96ebf82464
+  metadata.gz: '08aa980e5d3d3c52fccedbfa3b69153c7e2f2151fc6823f1b45a510f3aa33652'
+  data.tar.gz: c535f5d0b57202c499b5430373aa010b9242a3962ff59c45ad5e8d0629814e2e
 SHA512:
-  metadata.gz: 5f5ca82de401c75ef81c7f4e1acb22e664da38ad59727d61e247cb8e8f0d066616ed7863bd4e12753f0986cc3fcf348eb1e6af8fdfefe1c3298ba24830426f76
-  data.tar.gz: 440d42dae06ecc51976d07854743ad3584726b2cba7e4d7e002402827eb69ea65a22c007d76e039799babd480a626a35b38e42ea60474fee64a61ed1724c23a6
+  metadata.gz: 8ccd1028b98b2eac7548414598fdbeb08194ad209315a08d1b383ce465eac9b96eda829203cb6da890a2040770b6b757bab949797300a7c30a2d366dd413ccb7
+  data.tar.gz: 50a2681b9d5b9b852642f41270caee378ceafb2e8384cde5df76933ffa8583949618d85cc71603f357522d6f44943e4276ba0aa18e745f940e457fef4d130e35

data/CHANGELOG.md CHANGED Viewed

@@ -1,6 +1,16 @@
 Unreleased Changes
 ------------------
+1.41.0 (2023-09-26)
+------------------
+* Feature - This release adds three new API support "CreateLakeFormationOptIn", "DeleteLakeFormationOptIn" and "ListLakeFormationOptIns", and also updates the corresponding documentation.
+1.40.0 (2023-07-17)
+------------------
+* Feature - Adds supports for ReadOnlyAdmins and AllowFullTableExternalDataAccess. Adds NESTED_PERMISSION and NESTED_CELL_PERMISSION to SUPPORTED_PERMISSION_TYPES enum. Adds CREATE_LF_TAG on catalog resource and ALTER, DROP, and GRANT_WITH_LF_TAG_EXPRESSION on LF Tag resource.
 1.39.0 (2023-07-11)
 ------------------

data/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 1.39.0
1	+ 1.41.0

data/lib/aws-sdk-lakeformation/client.rb CHANGED Viewed

@@ -629,8 +629,8 @@ module Aws::LakeFormation
     #             ],
     #           },
     #         },
-    #         permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
-    #         permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #         permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
+    #         permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #       },
     #     ],
     #   })
@@ -669,9 +669,9 @@ module Aws::LakeFormation
     #   resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values #=> Array
     #   resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values[0] #=> String
     #   resp.failures[0].request_entry.permissions #=> Array
-    #   resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.failures[0].request_entry.permissions_with_grant_option #=> Array
-    #   resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.failures[0].error.error_code #=> String
     #   resp.failures[0].error.error_message #=> String
     #
@@ -759,8 +759,8 @@ module Aws::LakeFormation
     #             ],
     #           },
     #         },
-    #         permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
-    #         permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #         permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
+    #         permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #       },
     #     ],
     #   })
@@ -799,9 +799,9 @@ module Aws::LakeFormation
     #   resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values #=> Array
     #   resp.failures[0].request_entry.resource.lf_tag_policy.expression[0].tag_values[0] #=> String
     #   resp.failures[0].request_entry.permissions #=> Array
-    #   resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.failures[0].request_entry.permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.failures[0].request_entry.permissions_with_grant_option #=> Array
-    #   resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.failures[0].request_entry.permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.failures[0].error.error_code #=> String
     #   resp.failures[0].error.error_message #=> String
     #
@@ -939,6 +939,84 @@ module Aws::LakeFormation
       req.send_request(options)
     end
+    # Enforce Lake Formation permissions for the given databases, tables,
+    # and principals.
+    #
+    # @option params [required, Types::DataLakePrincipal] :principal
+    #   The Lake Formation principal. Supported principals are IAM users or
+    #   IAM roles.
+    #
+    # @option params [required, Types::Resource] :resource
+    #   A structure for the resource.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.create_lake_formation_opt_in({
+    #     principal: { # required
+    #       data_lake_principal_identifier: "DataLakePrincipalString",
+    #     },
+    #     resource: { # required
+    #       catalog: {
+    #       },
+    #       database: {
+    #         catalog_id: "CatalogIdString",
+    #         name: "NameString", # required
+    #       },
+    #       table: {
+    #         catalog_id: "CatalogIdString",
+    #         database_name: "NameString", # required
+    #         name: "NameString",
+    #         table_wildcard: {
+    #         },
+    #       },
+    #       table_with_columns: {
+    #         catalog_id: "CatalogIdString",
+    #         database_name: "NameString", # required
+    #         name: "NameString", # required
+    #         column_names: ["NameString"],
+    #         column_wildcard: {
+    #           excluded_column_names: ["NameString"],
+    #         },
+    #       },
+    #       data_location: {
+    #         catalog_id: "CatalogIdString",
+    #         resource_arn: "ResourceArnString", # required
+    #       },
+    #       data_cells_filter: {
+    #         table_catalog_id: "CatalogIdString",
+    #         database_name: "NameString",
+    #         table_name: "NameString",
+    #         name: "NameString",
+    #       },
+    #       lf_tag: {
+    #         catalog_id: "CatalogIdString",
+    #         tag_key: "NameString", # required
+    #         tag_values: ["LFTagValue"], # required
+    #       },
+    #       lf_tag_policy: {
+    #         catalog_id: "CatalogIdString",
+    #         resource_type: "DATABASE", # required, accepts DATABASE, TABLE
+    #         expression: [ # required
+    #           {
+    #             tag_key: "LFTagKey", # required
+    #             tag_values: ["LFTagValue"], # required
+    #           },
+    #         ],
+    #       },
+    #     },
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/CreateLakeFormationOptIn AWS API Documentation
+    #
+    # @overload create_lake_formation_opt_in(params = {})
+    # @param [Hash] params ({})
+    def create_lake_formation_opt_in(params = {}, options = {})
+      req = build_request(:create_lake_formation_opt_in, params)
+      req.send_request(options)
+    end
     # Deletes a data cell filter.
     #
     # @option params [String] :table_catalog_id
@@ -1007,6 +1085,84 @@ module Aws::LakeFormation
       req.send_request(options)
     end
+    # Remove the Lake Formation permissions enforcement of the given
+    # databases, tables, and principals.
+    #
+    # @option params [required, Types::DataLakePrincipal] :principal
+    #   The Lake Formation principal. Supported principals are IAM users or
+    #   IAM roles.
+    #
+    # @option params [required, Types::Resource] :resource
+    #   A structure for the resource.
+    #
+    # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.delete_lake_formation_opt_in({
+    #     principal: { # required
+    #       data_lake_principal_identifier: "DataLakePrincipalString",
+    #     },
+    #     resource: { # required
+    #       catalog: {
+    #       },
+    #       database: {
+    #         catalog_id: "CatalogIdString",
+    #         name: "NameString", # required
+    #       },
+    #       table: {
+    #         catalog_id: "CatalogIdString",
+    #         database_name: "NameString", # required
+    #         name: "NameString",
+    #         table_wildcard: {
+    #         },
+    #       },
+    #       table_with_columns: {
+    #         catalog_id: "CatalogIdString",
+    #         database_name: "NameString", # required
+    #         name: "NameString", # required
+    #         column_names: ["NameString"],
+    #         column_wildcard: {
+    #           excluded_column_names: ["NameString"],
+    #         },
+    #       },
+    #       data_location: {
+    #         catalog_id: "CatalogIdString",
+    #         resource_arn: "ResourceArnString", # required
+    #       },
+    #       data_cells_filter: {
+    #         table_catalog_id: "CatalogIdString",
+    #         database_name: "NameString",
+    #         table_name: "NameString",
+    #         name: "NameString",
+    #       },
+    #       lf_tag: {
+    #         catalog_id: "CatalogIdString",
+    #         tag_key: "NameString", # required
+    #         tag_values: ["LFTagValue"], # required
+    #       },
+    #       lf_tag_policy: {
+    #         catalog_id: "CatalogIdString",
+    #         resource_type: "DATABASE", # required, accepts DATABASE, TABLE
+    #         expression: [ # required
+    #           {
+    #             tag_key: "LFTagKey", # required
+    #             tag_values: ["LFTagValue"], # required
+    #           },
+    #         ],
+    #       },
+    #     },
+    #   })
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/DeleteLakeFormationOptIn AWS API Documentation
+    #
+    # @overload delete_lake_formation_opt_in(params = {})
+    # @param [Hash] params ({})
+    def delete_lake_formation_opt_in(params = {}, options = {})
+      req = build_request(:delete_lake_formation_opt_in, params)
+      req.send_request(options)
+    end
     # For a specific governed table, provides a list of Amazon S3 objects
     # that will be written during the current transaction and that can be
     # automatically deleted if the transaction is canceled. Without this
@@ -1113,6 +1269,7 @@ module Aws::LakeFormation
     #   resp.resource_info.role_arn #=> String
     #   resp.resource_info.last_modified #=> Time
     #   resp.resource_info.with_federation #=> Boolean
+    #   resp.resource_info.hybrid_access_enabled #=> Boolean
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/DescribeResource AWS API Documentation
     #
@@ -1252,19 +1409,22 @@ module Aws::LakeFormation
     #
     #   resp.data_lake_settings.data_lake_admins #=> Array
     #   resp.data_lake_settings.data_lake_admins[0].data_lake_principal_identifier #=> String
+    #   resp.data_lake_settings.read_only_admins #=> Array
+    #   resp.data_lake_settings.read_only_admins[0].data_lake_principal_identifier #=> String
     #   resp.data_lake_settings.create_database_default_permissions #=> Array
     #   resp.data_lake_settings.create_database_default_permissions[0].principal.data_lake_principal_identifier #=> String
     #   resp.data_lake_settings.create_database_default_permissions[0].permissions #=> Array
-    #   resp.data_lake_settings.create_database_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.data_lake_settings.create_database_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.data_lake_settings.create_table_default_permissions #=> Array
     #   resp.data_lake_settings.create_table_default_permissions[0].principal.data_lake_principal_identifier #=> String
     #   resp.data_lake_settings.create_table_default_permissions[0].permissions #=> Array
-    #   resp.data_lake_settings.create_table_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.data_lake_settings.create_table_default_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.data_lake_settings.parameters #=> Hash
     #   resp.data_lake_settings.parameters["KeyString"] #=> String
     #   resp.data_lake_settings.trusted_resource_owners #=> Array
     #   resp.data_lake_settings.trusted_resource_owners[0] #=> String
     #   resp.data_lake_settings.allow_external_data_filtering #=> Boolean
+    #   resp.data_lake_settings.allow_full_table_external_data_access #=> Boolean
     #   resp.data_lake_settings.external_data_filtering_allow_list #=> Array
     #   resp.data_lake_settings.external_data_filtering_allow_list[0].data_lake_principal_identifier #=> String
     #   resp.data_lake_settings.authorized_session_tag_value_list #=> Array
@@ -1350,11 +1510,13 @@ module Aws::LakeFormation
     #   resp.permissions[0].resource.lf_tag_policy.expression[0].tag_values #=> Array
     #   resp.permissions[0].resource.lf_tag_policy.expression[0].tag_values[0] #=> String
     #   resp.permissions[0].permissions #=> Array
-    #   resp.permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.permissions[0].permissions_with_grant_option #=> Array
-    #   resp.permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.permissions[0].additional_details.resource_share #=> Array
     #   resp.permissions[0].additional_details.resource_share[0] #=> String
+    #   resp.permissions[0].last_updated #=> Time
+    #   resp.permissions[0].last_updated_by #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/GetEffectivePermissionsForPath AWS API Documentation
@@ -1691,7 +1853,7 @@ module Aws::LakeFormation
     #   A structure representing context to access a resource (column names,
     #   query ID, etc).
     #
-    # @option params [required, Array<String>] :supported_permission_types
+    # @option params [Array<String>] :supported_permission_types
     #   A list of supported permission types for the partition. Valid values
     #   are `COLUMN_PERMISSION` and `CELL_FILTER_PERMISSION`.
     #
@@ -1709,12 +1871,12 @@ module Aws::LakeFormation
     #     partition: { # required
     #       values: ["ValueString"], # required
     #     },
-    #     permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #     permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #     duration_seconds: 1,
     #     audit_context: {
     #       additional_audit_context: "AuditContextString",
     #     },
-    #     supported_permission_types: ["COLUMN_PERMISSION"], # required, accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION
+    #     supported_permission_types: ["COLUMN_PERMISSION"], # accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION, NESTED_PERMISSION, NESTED_CELL_PERMISSION
     #   })
     #
     # @example Response structure
@@ -1755,7 +1917,7 @@ module Aws::LakeFormation
     #   A structure representing context to access a resource (column names,
     #   query ID, etc).
     #
-    # @option params [required, Array<String>] :supported_permission_types
+    # @option params [Array<String>] :supported_permission_types
     #   A list of supported permission types for the table. Valid values are
     #   `COLUMN_PERMISSION` and `CELL_FILTER_PERMISSION`.
     #
@@ -1770,12 +1932,12 @@ module Aws::LakeFormation
     #
     #   resp = client.get_temporary_glue_table_credentials({
     #     table_arn: "ResourceArnString", # required
-    #     permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #     permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #     duration_seconds: 1,
     #     audit_context: {
     #       additional_audit_context: "AuditContextString",
     #     },
-    #     supported_permission_types: ["COLUMN_PERMISSION"], # required, accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION
+    #     supported_permission_types: ["COLUMN_PERMISSION"], # accepts COLUMN_PERMISSION, CELL_FILTER_PERMISSION, NESTED_PERMISSION, NESTED_CELL_PERMISSION
     #   })
     #
     # @example Response structure
@@ -1985,8 +2147,8 @@ module Aws::LakeFormation
     #         ],
     #       },
     #     },
-    #     permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
-    #     permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #     permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
+    #     permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/GrantPermissions AWS API Documentation
@@ -2110,6 +2272,134 @@ module Aws::LakeFormation
       req.send_request(options)
     end
+    # Retrieve the current list of resources and principals that are opt in
+    # to enforce Lake Formation permissions.
+    #
+    # @option params [Types::DataLakePrincipal] :principal
+    #   The Lake Formation principal. Supported principals are IAM users or
+    #   IAM roles.
+    #
+    # @option params [Types::Resource] :resource
+    #   A structure for the resource.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of results to return.
+    #
+    # @option params [String] :next_token
+    #   A continuation token, if this is not the first call to retrieve this
+    #   list.
+    #
+    # @return [Types::ListLakeFormationOptInsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
+    #
+    #   * {Types::ListLakeFormationOptInsResponse#lake_formation_opt_ins_info_list #lake_formation_opt_ins_info_list} => Array&lt;Types::LakeFormationOptInsInfo&gt;
+    #   * {Types::ListLakeFormationOptInsResponse#next_token #next_token} => String
+    #
+    # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
+    #
+    # @example Request syntax with placeholder values
+    #
+    #   resp = client.list_lake_formation_opt_ins({
+    #     principal: {
+    #       data_lake_principal_identifier: "DataLakePrincipalString",
+    #     },
+    #     resource: {
+    #       catalog: {
+    #       },
+    #       database: {
+    #         catalog_id: "CatalogIdString",
+    #         name: "NameString", # required
+    #       },
+    #       table: {
+    #         catalog_id: "CatalogIdString",
+    #         database_name: "NameString", # required
+    #         name: "NameString",
+    #         table_wildcard: {
+    #         },
+    #       },
+    #       table_with_columns: {
+    #         catalog_id: "CatalogIdString",
+    #         database_name: "NameString", # required
+    #         name: "NameString", # required
+    #         column_names: ["NameString"],
+    #         column_wildcard: {
+    #           excluded_column_names: ["NameString"],
+    #         },
+    #       },
+    #       data_location: {
+    #         catalog_id: "CatalogIdString",
+    #         resource_arn: "ResourceArnString", # required
+    #       },
+    #       data_cells_filter: {
+    #         table_catalog_id: "CatalogIdString",
+    #         database_name: "NameString",
+    #         table_name: "NameString",
+    #         name: "NameString",
+    #       },
+    #       lf_tag: {
+    #         catalog_id: "CatalogIdString",
+    #         tag_key: "NameString", # required
+    #         tag_values: ["LFTagValue"], # required
+    #       },
+    #       lf_tag_policy: {
+    #         catalog_id: "CatalogIdString",
+    #         resource_type: "DATABASE", # required, accepts DATABASE, TABLE
+    #         expression: [ # required
+    #           {
+    #             tag_key: "LFTagKey", # required
+    #             tag_values: ["LFTagValue"], # required
+    #           },
+    #         ],
+    #       },
+    #     },
+    #     max_results: 1,
+    #     next_token: "Token",
+    #   })
+    #
+    # @example Response structure
+    #
+    #   resp.lake_formation_opt_ins_info_list #=> Array
+    #   resp.lake_formation_opt_ins_info_list[0].resource.database.catalog_id #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.database.name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table.catalog_id #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table.database_name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table.name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table_with_columns.catalog_id #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table_with_columns.database_name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table_with_columns.name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table_with_columns.column_names #=> Array
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table_with_columns.column_names[0] #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table_with_columns.column_wildcard.excluded_column_names #=> Array
+    #   resp.lake_formation_opt_ins_info_list[0].resource.table_with_columns.column_wildcard.excluded_column_names[0] #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.data_location.catalog_id #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.data_location.resource_arn #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.data_cells_filter.table_catalog_id #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.data_cells_filter.database_name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.data_cells_filter.table_name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.data_cells_filter.name #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag.catalog_id #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag.tag_key #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag.tag_values #=> Array
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag.tag_values[0] #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag_policy.catalog_id #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag_policy.resource_type #=> String, one of "DATABASE", "TABLE"
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag_policy.expression #=> Array
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag_policy.expression[0].tag_key #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag_policy.expression[0].tag_values #=> Array
+    #   resp.lake_formation_opt_ins_info_list[0].resource.lf_tag_policy.expression[0].tag_values[0] #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].principal.data_lake_principal_identifier #=> String
+    #   resp.lake_formation_opt_ins_info_list[0].last_modified #=> Time
+    #   resp.lake_formation_opt_ins_info_list[0].last_updated_by #=> String
+    #   resp.next_token #=> String
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/ListLakeFormationOptIns AWS API Documentation
+    #
+    # @overload list_lake_formation_opt_ins(params = {})
+    # @param [Hash] params ({})
+    def list_lake_formation_opt_ins(params = {}, options = {})
+      req = build_request(:list_lake_formation_opt_ins, params)
+      req.send_request(options)
+    end
     # Returns a list of the principal permissions on the resource, filtered
     # by the permissions of the caller. For example, if you are granted an
     # ALTER permission, you are able to see only the principal permissions
@@ -2123,7 +2413,7 @@ module Aws::LakeFormation
     #
     #
     #
-    # [1]: https://docs-aws.amazon.com/lake-formation/latest/dg/security-data-access.html
+    # [1]: https://docs.aws.amazon.com/lake-formation/latest/dg/security-data-access.html
     #
     # @option params [String] :catalog_id
     #   The identifier for the Data Catalog. By default, the account ID. The
@@ -2256,11 +2546,13 @@ module Aws::LakeFormation
     #   resp.principal_resource_permissions[0].resource.lf_tag_policy.expression[0].tag_values #=> Array
     #   resp.principal_resource_permissions[0].resource.lf_tag_policy.expression[0].tag_values[0] #=> String
     #   resp.principal_resource_permissions[0].permissions #=> Array
-    #   resp.principal_resource_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.principal_resource_permissions[0].permissions[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.principal_resource_permissions[0].permissions_with_grant_option #=> Array
-    #   resp.principal_resource_permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_TAG", "ASSOCIATE"
+    #   resp.principal_resource_permissions[0].permissions_with_grant_option[0] #=> String, one of "ALL", "SELECT", "ALTER", "DROP", "DELETE", "INSERT", "DESCRIBE", "CREATE_DATABASE", "CREATE_TABLE", "DATA_LOCATION_ACCESS", "CREATE_LF_TAG", "ASSOCIATE", "GRANT_WITH_LF_TAG_EXPRESSION"
     #   resp.principal_resource_permissions[0].additional_details.resource_share #=> Array
     #   resp.principal_resource_permissions[0].additional_details.resource_share[0] #=> String
+    #   resp.principal_resource_permissions[0].last_updated #=> Time
+    #   resp.principal_resource_permissions[0].last_updated_by #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/ListPermissions AWS API Documentation
@@ -2313,6 +2605,7 @@ module Aws::LakeFormation
     #   resp.resource_info_list[0].role_arn #=> String
     #   resp.resource_info_list[0].last_modified #=> Time
     #   resp.resource_info_list[0].with_federation #=> Boolean
+    #   resp.resource_info_list[0].hybrid_access_enabled #=> Boolean
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/ListResources AWS API Documentation
@@ -2475,12 +2768,17 @@ module Aws::LakeFormation
     #           data_lake_principal_identifier: "DataLakePrincipalString",
     #         },
     #       ],
+    #       read_only_admins: [
+    #         {
+    #           data_lake_principal_identifier: "DataLakePrincipalString",
+    #         },
+    #       ],
     #       create_database_default_permissions: [
     #         {
     #           principal: {
     #             data_lake_principal_identifier: "DataLakePrincipalString",
     #           },
-    #           permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #           permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #         },
     #       ],
     #       create_table_default_permissions: [
@@ -2488,7 +2786,7 @@ module Aws::LakeFormation
     #           principal: {
     #             data_lake_principal_identifier: "DataLakePrincipalString",
     #           },
-    #           permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #           permissions: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #         },
     #       ],
     #       parameters: {
@@ -2496,6 +2794,7 @@ module Aws::LakeFormation
     #       },
     #       trusted_resource_owners: ["CatalogIdString"],
     #       allow_external_data_filtering: false,
+    #       allow_full_table_external_data_access: false,
     #       external_data_filtering_allow_list: [
     #         {
     #           data_lake_principal_identifier: "DataLakePrincipalString",
@@ -2559,6 +2858,11 @@ module Aws::LakeFormation
     # @option params [Boolean] :with_federation
     #   Whether or not the resource is a federated resource.
     #
+    # @option params [Boolean] :hybrid_access_enabled
+    #   Specifies whether the data access of tables pointing to the location
+    #   can be managed by both Lake Formation permissions as well as Amazon S3
+    #   bucket policies.
+    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
@@ -2568,6 +2872,7 @@ module Aws::LakeFormation
     #     use_service_linked_role: false,
     #     role_arn: "IAMRoleArn",
     #     with_federation: false,
+    #     hybrid_access_enabled: false,
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/RegisterResource AWS API Documentation
@@ -2768,8 +3073,8 @@ module Aws::LakeFormation
     #         ],
     #       },
     #     },
-    #     permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
-    #     permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
+    #     permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
+    #     permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_LF_TAG, ASSOCIATE, GRANT_WITH_LF_TAG_EXPRESSION
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/RevokePermissions AWS API Documentation
@@ -3094,6 +3399,11 @@ module Aws::LakeFormation
     # @option params [Boolean] :with_federation
     #   Whether or not the resource is a federated resource.
     #
+    # @option params [Boolean] :hybrid_access_enabled
+    #   Specifies whether the data access of tables pointing to the location
+    #   can be managed by both Lake Formation permissions as well as Amazon S3
+    #   bucket policies.
+    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
@@ -3102,6 +3412,7 @@ module Aws::LakeFormation
     #     role_arn: "IAMRoleArn", # required
     #     resource_arn: "ResourceArnString", # required
     #     with_federation: false,
+    #     hybrid_access_enabled: false,
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/UpdateResource AWS API Documentation
@@ -3225,7 +3536,7 @@ module Aws::LakeFormation
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-lakeformation'
-      context[:gem_version] = '1.39.0'
+      context[:gem_version] = '1.41.0'
       Seahorse::Client::Request.new(handlers, context)
     end

data/lib/aws-sdk-lakeformation/client_api.rb CHANGED Viewed

@@ -50,6 +50,8 @@ module Aws::LakeFormation
     CreateDataCellsFilterResponse = Shapes::StructureShape.new(name: 'CreateDataCellsFilterResponse')
     CreateLFTagRequest = Shapes::StructureShape.new(name: 'CreateLFTagRequest')
     CreateLFTagResponse = Shapes::StructureShape.new(name: 'CreateLFTagResponse')
+    CreateLakeFormationOptInRequest = Shapes::StructureShape.new(name: 'CreateLakeFormationOptInRequest')
+    CreateLakeFormationOptInResponse = Shapes::StructureShape.new(name: 'CreateLakeFormationOptInResponse')
     CredentialTimeoutDurationSecondInteger = Shapes::IntegerShape.new(name: 'CredentialTimeoutDurationSecondInteger')
     DataCellsFilter = Shapes::StructureShape.new(name: 'DataCellsFilter')
     DataCellsFilterList = Shapes::ListShape.new(name: 'DataCellsFilterList')
@@ -67,6 +69,8 @@ module Aws::LakeFormation
     DeleteDataCellsFilterResponse = Shapes::StructureShape.new(name: 'DeleteDataCellsFilterResponse')
     DeleteLFTagRequest = Shapes::StructureShape.new(name: 'DeleteLFTagRequest')
     DeleteLFTagResponse = Shapes::StructureShape.new(name: 'DeleteLFTagResponse')
+    DeleteLakeFormationOptInRequest = Shapes::StructureShape.new(name: 'DeleteLakeFormationOptInRequest')
+    DeleteLakeFormationOptInResponse = Shapes::StructureShape.new(name: 'DeleteLakeFormationOptInResponse')
     DeleteObjectInput = Shapes::StructureShape.new(name: 'DeleteObjectInput')
     DeleteObjectsOnCancelRequest = Shapes::StructureShape.new(name: 'DeleteObjectsOnCancelRequest')
     DeleteObjectsOnCancelResponse = Shapes::StructureShape.new(name: 'DeleteObjectsOnCancelResponse')
@@ -139,11 +143,15 @@ module Aws::LakeFormation
     LFTagPolicyResource = Shapes::StructureShape.new(name: 'LFTagPolicyResource')
     LFTagValue = Shapes::StringShape.new(name: 'LFTagValue')
     LFTagsList = Shapes::ListShape.new(name: 'LFTagsList')
+    LakeFormationOptInsInfo = Shapes::StructureShape.new(name: 'LakeFormationOptInsInfo')
+    LakeFormationOptInsInfoList = Shapes::ListShape.new(name: 'LakeFormationOptInsInfoList')
     LastModifiedTimestamp = Shapes::TimestampShape.new(name: 'LastModifiedTimestamp')
     ListDataCellsFilterRequest = Shapes::StructureShape.new(name: 'ListDataCellsFilterRequest')
     ListDataCellsFilterResponse = Shapes::StructureShape.new(name: 'ListDataCellsFilterResponse')
     ListLFTagsRequest = Shapes::StructureShape.new(name: 'ListLFTagsRequest')
     ListLFTagsResponse = Shapes::StructureShape.new(name: 'ListLFTagsResponse')
+    ListLakeFormationOptInsRequest = Shapes::StructureShape.new(name: 'ListLakeFormationOptInsRequest')
+    ListLakeFormationOptInsResponse = Shapes::StructureShape.new(name: 'ListLakeFormationOptInsResponse')
     ListPermissionsRequest = Shapes::StructureShape.new(name: 'ListPermissionsRequest')
     ListPermissionsResponse = Shapes::StructureShape.new(name: 'ListPermissionsResponse')
     ListResourcesRequest = Shapes::StructureShape.new(name: 'ListResourcesRequest')
@@ -385,6 +393,12 @@ module Aws::LakeFormation
     CreateLFTagResponse.struct_class = Types::CreateLFTagResponse
+    CreateLakeFormationOptInRequest.add_member(:principal, Shapes::ShapeRef.new(shape: DataLakePrincipal, required: true, location_name: "Principal"))
+    CreateLakeFormationOptInRequest.add_member(:resource, Shapes::ShapeRef.new(shape: Resource, required: true, location_name: "Resource"))
+    CreateLakeFormationOptInRequest.struct_class = Types::CreateLakeFormationOptInRequest
+    CreateLakeFormationOptInResponse.struct_class = Types::CreateLakeFormationOptInResponse
     DataCellsFilter.add_member(:table_catalog_id, Shapes::ShapeRef.new(shape: CatalogIdString, required: true, location_name: "TableCatalogId"))
     DataCellsFilter.add_member(:database_name, Shapes::ShapeRef.new(shape: NameString, required: true, location_name: "DatabaseName"))
     DataCellsFilter.add_member(:table_name, Shapes::ShapeRef.new(shape: NameString, required: true, location_name: "TableName"))
@@ -409,11 +423,13 @@ module Aws::LakeFormation
     DataLakePrincipalList.member = Shapes::ShapeRef.new(shape: DataLakePrincipal)
     DataLakeSettings.add_member(:data_lake_admins, Shapes::ShapeRef.new(shape: DataLakePrincipalList, location_name: "DataLakeAdmins"))
+    DataLakeSettings.add_member(:read_only_admins, Shapes::ShapeRef.new(shape: DataLakePrincipalList, location_name: "ReadOnlyAdmins"))
     DataLakeSettings.add_member(:create_database_default_permissions, Shapes::ShapeRef.new(shape: PrincipalPermissionsList, location_name: "CreateDatabaseDefaultPermissions"))
     DataLakeSettings.add_member(:create_table_default_permissions, Shapes::ShapeRef.new(shape: PrincipalPermissionsList, location_name: "CreateTableDefaultPermissions"))
     DataLakeSettings.add_member(:parameters, Shapes::ShapeRef.new(shape: ParametersMap, location_name: "Parameters"))
     DataLakeSettings.add_member(:trusted_resource_owners, Shapes::ShapeRef.new(shape: TrustedResourceOwners, location_name: "TrustedResourceOwners"))
     DataLakeSettings.add_member(:allow_external_data_filtering, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "AllowExternalDataFiltering"))
+    DataLakeSettings.add_member(:allow_full_table_external_data_access, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "AllowFullTableExternalDataAccess"))
     DataLakeSettings.add_member(:external_data_filtering_allow_list, Shapes::ShapeRef.new(shape: DataLakePrincipalList, location_name: "ExternalDataFilteringAllowList"))
     DataLakeSettings.add_member(:authorized_session_tag_value_list, Shapes::ShapeRef.new(shape: AuthorizedSessionTagValueList, location_name: "AuthorizedSessionTagValueList"))
     DataLakeSettings.struct_class = Types::DataLakeSettings
@@ -442,6 +458,12 @@ module Aws::LakeFormation
     DeleteLFTagResponse.struct_class = Types::DeleteLFTagResponse
+    DeleteLakeFormationOptInRequest.add_member(:principal, Shapes::ShapeRef.new(shape: DataLakePrincipal, required: true, location_name: "Principal"))
+    DeleteLakeFormationOptInRequest.add_member(:resource, Shapes::ShapeRef.new(shape: Resource, required: true, location_name: "Resource"))
+    DeleteLakeFormationOptInRequest.struct_class = Types::DeleteLakeFormationOptInRequest
+    DeleteLakeFormationOptInResponse.struct_class = Types::DeleteLakeFormationOptInResponse
     DeleteObjectInput.add_member(:uri, Shapes::ShapeRef.new(shape: URI, required: true, location_name: "Uri"))
     DeleteObjectInput.add_member(:etag, Shapes::ShapeRef.new(shape: ETagString, location_name: "ETag"))
     DeleteObjectInput.add_member(:partition_values, Shapes::ShapeRef.new(shape: PartitionValuesList, location_name: "PartitionValues"))
@@ -583,7 +605,7 @@ module Aws::LakeFormation
     GetTemporaryGluePartitionCredentialsRequest.add_member(:permissions, Shapes::ShapeRef.new(shape: PermissionList, location_name: "Permissions"))
     GetTemporaryGluePartitionCredentialsRequest.add_member(:duration_seconds, Shapes::ShapeRef.new(shape: CredentialTimeoutDurationSecondInteger, location_name: "DurationSeconds"))
     GetTemporaryGluePartitionCredentialsRequest.add_member(:audit_context, Shapes::ShapeRef.new(shape: AuditContext, location_name: "AuditContext"))
-    GetTemporaryGluePartitionCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, required: true, location_name: "SupportedPermissionTypes"))
+    GetTemporaryGluePartitionCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, location_name: "SupportedPermissionTypes"))
     GetTemporaryGluePartitionCredentialsRequest.struct_class = Types::GetTemporaryGluePartitionCredentialsRequest
     GetTemporaryGluePartitionCredentialsResponse.add_member(:access_key_id, Shapes::ShapeRef.new(shape: AccessKeyIdString, location_name: "AccessKeyId"))
@@ -596,7 +618,7 @@ module Aws::LakeFormation
     GetTemporaryGlueTableCredentialsRequest.add_member(:permissions, Shapes::ShapeRef.new(shape: PermissionList, location_name: "Permissions"))
     GetTemporaryGlueTableCredentialsRequest.add_member(:duration_seconds, Shapes::ShapeRef.new(shape: CredentialTimeoutDurationSecondInteger, location_name: "DurationSeconds"))
     GetTemporaryGlueTableCredentialsRequest.add_member(:audit_context, Shapes::ShapeRef.new(shape: AuditContext, location_name: "AuditContext"))
-    GetTemporaryGlueTableCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, required: true, location_name: "SupportedPermissionTypes"))
+    GetTemporaryGlueTableCredentialsRequest.add_member(:supported_permission_types, Shapes::ShapeRef.new(shape: PermissionTypeList, location_name: "SupportedPermissionTypes"))
     GetTemporaryGlueTableCredentialsRequest.struct_class = Types::GetTemporaryGlueTableCredentialsRequest
     GetTemporaryGlueTableCredentialsResponse.add_member(:access_key_id, Shapes::ShapeRef.new(shape: AccessKeyIdString, location_name: "AccessKeyId"))
@@ -670,6 +692,14 @@ module Aws::LakeFormation
     LFTagsList.member = Shapes::ShapeRef.new(shape: LFTagPair)
+    LakeFormationOptInsInfo.add_member(:resource, Shapes::ShapeRef.new(shape: Resource, location_name: "Resource"))
+    LakeFormationOptInsInfo.add_member(:principal, Shapes::ShapeRef.new(shape: DataLakePrincipal, location_name: "Principal"))
+    LakeFormationOptInsInfo.add_member(:last_modified, Shapes::ShapeRef.new(shape: LastModifiedTimestamp, location_name: "LastModified"))
+    LakeFormationOptInsInfo.add_member(:last_updated_by, Shapes::ShapeRef.new(shape: NameString, location_name: "LastUpdatedBy"))
+    LakeFormationOptInsInfo.struct_class = Types::LakeFormationOptInsInfo
+    LakeFormationOptInsInfoList.member = Shapes::ShapeRef.new(shape: LakeFormationOptInsInfo)
     ListDataCellsFilterRequest.add_member(:table, Shapes::ShapeRef.new(shape: TableResource, location_name: "Table"))
     ListDataCellsFilterRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "NextToken"))
     ListDataCellsFilterRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PageSize, location_name: "MaxResults"))
@@ -689,6 +719,16 @@ module Aws::LakeFormation
     ListLFTagsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "NextToken"))
     ListLFTagsResponse.struct_class = Types::ListLFTagsResponse
+    ListLakeFormationOptInsRequest.add_member(:principal, Shapes::ShapeRef.new(shape: DataLakePrincipal, location_name: "Principal"))
+    ListLakeFormationOptInsRequest.add_member(:resource, Shapes::ShapeRef.new(shape: Resource, location_name: "Resource"))
+    ListLakeFormationOptInsRequest.add_member(:max_results, Shapes::ShapeRef.new(shape: PageSize, location_name: "MaxResults"))
+    ListLakeFormationOptInsRequest.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "NextToken"))
+    ListLakeFormationOptInsRequest.struct_class = Types::ListLakeFormationOptInsRequest
+    ListLakeFormationOptInsResponse.add_member(:lake_formation_opt_ins_info_list, Shapes::ShapeRef.new(shape: LakeFormationOptInsInfoList, location_name: "LakeFormationOptInsInfoList"))
+    ListLakeFormationOptInsResponse.add_member(:next_token, Shapes::ShapeRef.new(shape: Token, location_name: "NextToken"))
+    ListLakeFormationOptInsResponse.struct_class = Types::ListLakeFormationOptInsResponse
     ListPermissionsRequest.add_member(:catalog_id, Shapes::ShapeRef.new(shape: CatalogIdString, location_name: "CatalogId"))
     ListPermissionsRequest.add_member(:principal, Shapes::ShapeRef.new(shape: DataLakePrincipal, location_name: "Principal"))
     ListPermissionsRequest.add_member(:resource_type, Shapes::ShapeRef.new(shape: DataLakeResourceType, location_name: "ResourceType"))
@@ -774,6 +814,8 @@ module Aws::LakeFormation
     PrincipalResourcePermissions.add_member(:permissions, Shapes::ShapeRef.new(shape: PermissionList, location_name: "Permissions"))
     PrincipalResourcePermissions.add_member(:permissions_with_grant_option, Shapes::ShapeRef.new(shape: PermissionList, location_name: "PermissionsWithGrantOption"))
     PrincipalResourcePermissions.add_member(:additional_details, Shapes::ShapeRef.new(shape: DetailsMap, location_name: "AdditionalDetails"))
+    PrincipalResourcePermissions.add_member(:last_updated, Shapes::ShapeRef.new(shape: LastModifiedTimestamp, location_name: "LastUpdated"))
+    PrincipalResourcePermissions.add_member(:last_updated_by, Shapes::ShapeRef.new(shape: NameString, location_name: "LastUpdatedBy"))
     PrincipalResourcePermissions.struct_class = Types::PrincipalResourcePermissions
     PrincipalResourcePermissionsList.member = Shapes::ShapeRef.new(shape: PrincipalResourcePermissions)
@@ -798,6 +840,7 @@ module Aws::LakeFormation
     RegisterResourceRequest.add_member(:use_service_linked_role, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "UseServiceLinkedRole"))
     RegisterResourceRequest.add_member(:role_arn, Shapes::ShapeRef.new(shape: IAMRoleArn, location_name: "RoleArn"))
     RegisterResourceRequest.add_member(:with_federation, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "WithFederation"))
+    RegisterResourceRequest.add_member(:hybrid_access_enabled, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "HybridAccessEnabled"))
     RegisterResourceRequest.struct_class = Types::RegisterResourceRequest
     RegisterResourceResponse.struct_class = Types::RegisterResourceResponse
@@ -824,6 +867,7 @@ module Aws::LakeFormation
     ResourceInfo.add_member(:role_arn, Shapes::ShapeRef.new(shape: IAMRoleArn, location_name: "RoleArn"))
     ResourceInfo.add_member(:last_modified, Shapes::ShapeRef.new(shape: LastModifiedTimestamp, location_name: "LastModified"))
     ResourceInfo.add_member(:with_federation, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "WithFederation"))
+    ResourceInfo.add_member(:hybrid_access_enabled, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "HybridAccessEnabled"))
     ResourceInfo.struct_class = Types::ResourceInfo
     ResourceInfoList.member = Shapes::ShapeRef.new(shape: ResourceInfo)
@@ -976,6 +1020,7 @@ module Aws::LakeFormation
     UpdateResourceRequest.add_member(:role_arn, Shapes::ShapeRef.new(shape: IAMRoleArn, required: true, location_name: "RoleArn"))
     UpdateResourceRequest.add_member(:resource_arn, Shapes::ShapeRef.new(shape: ResourceArnString, required: true, location_name: "ResourceArn"))
     UpdateResourceRequest.add_member(:with_federation, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "WithFederation"))
+    UpdateResourceRequest.add_member(:hybrid_access_enabled, Shapes::ShapeRef.new(shape: NullableBoolean, location_name: "HybridAccessEnabled"))
     UpdateResourceRequest.struct_class = Types::UpdateResourceRequest
     UpdateResourceResponse.struct_class = Types::UpdateResourceResponse
@@ -1145,6 +1190,20 @@ module Aws::LakeFormation
         o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
       end)
+      api.add_operation(:create_lake_formation_opt_in, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "CreateLakeFormationOptIn"
+        o.http_method = "POST"
+        o.http_request_uri = "/CreateLakeFormationOptIn"
+        o.input = Shapes::ShapeRef.new(shape: CreateLakeFormationOptInRequest)
+        o.output = Shapes::ShapeRef.new(shape: CreateLakeFormationOptInResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServiceException)
+        o.errors << Shapes::ShapeRef.new(shape: OperationTimeoutException)
+        o.errors << Shapes::ShapeRef.new(shape: EntityNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
+      end)
       api.add_operation(:delete_data_cells_filter, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DeleteDataCellsFilter"
         o.http_method = "POST"
@@ -1171,6 +1230,20 @@ module Aws::LakeFormation
         o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
       end)
+      api.add_operation(:delete_lake_formation_opt_in, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "DeleteLakeFormationOptIn"
+        o.http_method = "POST"
+        o.http_request_uri = "/DeleteLakeFormationOptIn"
+        o.input = Shapes::ShapeRef.new(shape: DeleteLakeFormationOptInRequest)
+        o.output = Shapes::ShapeRef.new(shape: DeleteLakeFormationOptInResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServiceException)
+        o.errors << Shapes::ShapeRef.new(shape: OperationTimeoutException)
+        o.errors << Shapes::ShapeRef.new(shape: EntityNotFoundException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o.errors << Shapes::ShapeRef.new(shape: ConcurrentModificationException)
+      end)
       api.add_operation(:delete_objects_on_cancel, Seahorse::Model::Operation.new.tap do |o|
         o.name = "DeleteObjectsOnCancel"
         o.http_method = "POST"
@@ -1473,6 +1546,24 @@ module Aws::LakeFormation
         )
       end)
+      api.add_operation(:list_lake_formation_opt_ins, Seahorse::Model::Operation.new.tap do |o|
+        o.name = "ListLakeFormationOptIns"
+        o.http_method = "POST"
+        o.http_request_uri = "/ListLakeFormationOptIns"
+        o.input = Shapes::ShapeRef.new(shape: ListLakeFormationOptInsRequest)
+        o.output = Shapes::ShapeRef.new(shape: ListLakeFormationOptInsResponse)
+        o.errors << Shapes::ShapeRef.new(shape: InvalidInputException)
+        o.errors << Shapes::ShapeRef.new(shape: InternalServiceException)
+        o.errors << Shapes::ShapeRef.new(shape: OperationTimeoutException)
+        o.errors << Shapes::ShapeRef.new(shape: AccessDeniedException)
+        o[:pager] = Aws::Pager.new(
+          limit_key: "max_results",
+          tokens: {
+            "next_token" => "next_token"
+          }
+        )
+      end)
       api.add_operation(:list_permissions, Seahorse::Model::Operation.new.tap do |o|
         o.name = "ListPermissions"
         o.http_method = "POST"

data/lib/aws-sdk-lakeformation/endpoints.rb CHANGED Viewed

@@ -124,6 +124,20 @@ module Aws::LakeFormation
       end
     end
+    class CreateLakeFormationOptIn
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::LakeFormation::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
     class DeleteDataCellsFilter
       def self.build(context)
         unless context.config.regional_endpoint
@@ -152,6 +166,20 @@ module Aws::LakeFormation
       end
     end
+    class DeleteLakeFormationOptIn
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::LakeFormation::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
     class DeleteObjectsOnCancel
       def self.build(context)
         unless context.config.regional_endpoint
@@ -432,6 +460,20 @@ module Aws::LakeFormation
       end
     end
+    class ListLakeFormationOptIns
+      def self.build(context)
+        unless context.config.regional_endpoint
+          endpoint = context.config.endpoint.to_s
+        end
+        Aws::LakeFormation::EndpointParameters.new(
+          region: context.config.region,
+          use_dual_stack: context.config.use_dualstack_endpoint,
+          use_fips: context.config.use_fips_endpoint,
+          endpoint: endpoint,
+        )
+      end
+    end
     class ListPermissions
       def self.build(context)
         unless context.config.regional_endpoint

data/lib/aws-sdk-lakeformation/plugins/endpoints.rb CHANGED Viewed

@@ -72,10 +72,14 @@ module Aws::LakeFormation
             Aws::LakeFormation::Endpoints::CreateDataCellsFilter.build(context)
           when :create_lf_tag
             Aws::LakeFormation::Endpoints::CreateLFTag.build(context)
+          when :create_lake_formation_opt_in
+            Aws::LakeFormation::Endpoints::CreateLakeFormationOptIn.build(context)
           when :delete_data_cells_filter
             Aws::LakeFormation::Endpoints::DeleteDataCellsFilter.build(context)
           when :delete_lf_tag
             Aws::LakeFormation::Endpoints::DeleteLFTag.build(context)
+          when :delete_lake_formation_opt_in
+            Aws::LakeFormation::Endpoints::DeleteLakeFormationOptIn.build(context)
           when :delete_objects_on_cancel
             Aws::LakeFormation::Endpoints::DeleteObjectsOnCancel.build(context)
           when :deregister_resource
@@ -116,6 +120,8 @@ module Aws::LakeFormation
             Aws::LakeFormation::Endpoints::ListDataCellsFilter.build(context)
           when :list_lf_tags
             Aws::LakeFormation::Endpoints::ListLFTags.build(context)
+          when :list_lake_formation_opt_ins
+            Aws::LakeFormation::Endpoints::ListLakeFormationOptIns.build(context)
           when :list_permissions
             Aws::LakeFormation::Endpoints::ListPermissions.build(context)
           when :list_resources

data/lib/aws-sdk-lakeformation/types.rb CHANGED Viewed

@@ -463,6 +463,28 @@ module Aws::LakeFormation
     #
     class CreateLFTagResponse < Aws::EmptyStructure; end
+    # @!attribute [rw] principal
+    #   The Lake Formation principal. Supported principals are IAM users or
+    #   IAM roles.
+    #   @return [Types::DataLakePrincipal]
+    #
+    # @!attribute [rw] resource
+    #   A structure for the resource.
+    #   @return [Types::Resource]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/CreateLakeFormationOptInRequest AWS API Documentation
+    #
+    class CreateLakeFormationOptInRequest < Struct.new(
+      :principal,
+      :resource)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/CreateLakeFormationOptInResponse AWS API Documentation
+    #
+    class CreateLakeFormationOptInResponse < Aws::EmptyStructure; end
     # A structure that describes certain columns on certain rows.
     #
     # @!attribute [rw] table_catalog_id
@@ -486,7 +508,10 @@ module Aws::LakeFormation
     #   @return [Types::RowFilter]
     #
     # @!attribute [rw] column_names
-    #   A list of column names.
+    #   A list of column names and/or nested column attributes. When
+    #   specifying nested attributes, use a qualified dot (.) delimited
+    #   format such as "address"."zip". Nested attributes within this
+    #   list may not exceed a depth of 5.
     #   @return [Array<String>]
     #
     # @!attribute [rw] column_wildcard
@@ -569,6 +594,12 @@ module Aws::LakeFormation
     #   users or IAM roles.
     #   @return [Array<Types::DataLakePrincipal>]
     #
+    # @!attribute [rw] read_only_admins
+    #   A list of Lake Formation principals with only view access to the
+    #   resources, without the ability to make changes. Supported principals
+    #   are IAM users or IAM roles.
+    #   @return [Array<Types::DataLakePrincipal>]
+    #
     # @!attribute [rw] create_database_default_permissions
     #   Specifies whether access control on newly created database is
     #   managed by Lake Formation permissions or exclusively by IAM
@@ -642,12 +673,18 @@ module Aws::LakeFormation
     #   If false or null, no Amazon EMR clusters will be able to access data
     #   in Amazon S3 locations that are registered with Lake Formation.
     #
-    #   For more information, see [(Optional) Allow Data Filtering on Amazon
-    #   EMR][1].
+    #   For more information, see [(Optional) Allow external data
+    #   filtering][1].
     #
     #
     #
-    #   [1]: https://docs-aws.amazon.com/lake-formation/latest/dg/getting-started-setup.html#emr-switch
+    #   [1]: https://docs.aws.amazon.com/lake-formation/latest/dg/initial-LF-setup.html#external-data-filter
+    #   @return [Boolean]
+    #
+    # @!attribute [rw] allow_full_table_external_data_access
+    #   Whether to allow a third-party query engine to get data access
+    #   credentials without session tags when a caller has full data access
+    #   permissions.
     #   @return [Boolean]
     #
     # @!attribute [rw] external_data_filtering_allow_list
@@ -669,11 +706,13 @@ module Aws::LakeFormation
     #
     class DataLakeSettings < Struct.new(
       :data_lake_admins,
+      :read_only_admins,
       :create_database_default_permissions,
       :create_table_default_permissions,
       :parameters,
       :trusted_resource_owners,
       :allow_external_data_filtering,
+      :allow_full_table_external_data_access,
       :external_data_filtering_allow_list,
       :authorized_session_tag_value_list)
       SENSITIVE = []
@@ -777,6 +816,28 @@ module Aws::LakeFormation
     #
     class DeleteLFTagResponse < Aws::EmptyStructure; end
+    # @!attribute [rw] principal
+    #   The Lake Formation principal. Supported principals are IAM users or
+    #   IAM roles.
+    #   @return [Types::DataLakePrincipal]
+    #
+    # @!attribute [rw] resource
+    #   A structure for the resource.
+    #   @return [Types::Resource]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/DeleteLakeFormationOptInRequest AWS API Documentation
+    #
+    class DeleteLakeFormationOptInRequest < Struct.new(
+      :principal,
+      :resource)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/DeleteLakeFormationOptInResponse AWS API Documentation
+    #
+    class DeleteLakeFormationOptInResponse < Aws::EmptyStructure; end
     # An object to delete from the governed table.
     #
     # @!attribute [rw] uri
@@ -1736,6 +1797,10 @@ module Aws::LakeFormation
     #
     # @!attribute [rw] tag_values
     #   A list of possible values an attribute can take.
+    #
+    #   The maximum number of values that can be defined for a LF-Tag is
+    #   1000. A single API call supports 50 values. You can use multiple API
+    #   calls to add more values.
     #   @return [Array<String>]
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/LFTag AWS API Documentation
@@ -1851,6 +1916,37 @@ module Aws::LakeFormation
       include Aws::Structure
     end
+    # A single principal-resource pair that has Lake Formation permissins
+    # enforced.
+    #
+    # @!attribute [rw] resource
+    #   A structure for the resource.
+    #   @return [Types::Resource]
+    #
+    # @!attribute [rw] principal
+    #   The Lake Formation principal. Supported principals are IAM users or
+    #   IAM roles.
+    #   @return [Types::DataLakePrincipal]
+    #
+    # @!attribute [rw] last_modified
+    #   The last modified date and time of the record.
+    #   @return [Time]
+    #
+    # @!attribute [rw] last_updated_by
+    #   The user who updated the record.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/LakeFormationOptInsInfo AWS API Documentation
+    #
+    class LakeFormationOptInsInfo < Struct.new(
+      :resource,
+      :principal,
+      :last_modified,
+      :last_updated_by)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @!attribute [rw] table
     #   A table in the Glue Data Catalog.
     #   @return [Types::TableResource]
@@ -1945,6 +2041,54 @@ module Aws::LakeFormation
       include Aws::Structure
     end
+    # @!attribute [rw] principal
+    #   The Lake Formation principal. Supported principals are IAM users or
+    #   IAM roles.
+    #   @return [Types::DataLakePrincipal]
+    #
+    # @!attribute [rw] resource
+    #   A structure for the resource.
+    #   @return [Types::Resource]
+    #
+    # @!attribute [rw] max_results
+    #   The maximum number of results to return.
+    #   @return [Integer]
+    #
+    # @!attribute [rw] next_token
+    #   A continuation token, if this is not the first call to retrieve this
+    #   list.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/ListLakeFormationOptInsRequest AWS API Documentation
+    #
+    class ListLakeFormationOptInsRequest < Struct.new(
+      :principal,
+      :resource,
+      :max_results,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
+    # @!attribute [rw] lake_formation_opt_ins_info_list
+    #   A list of principal-resource pairs that have Lake Formation
+    #   permissins enforced.
+    #   @return [Array<Types::LakeFormationOptInsInfo>]
+    #
+    # @!attribute [rw] next_token
+    #   A continuation token, if this is not the first call to retrieve this
+    #   list.
+    #   @return [String]
+    #
+    # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/ListLakeFormationOptInsResponse AWS API Documentation
+    #
+    class ListLakeFormationOptInsResponse < Struct.new(
+      :lake_formation_opt_ins_info_list,
+      :next_token)
+      SENSITIVE = []
+      include Aws::Structure
+    end
     # @!attribute [rw] catalog_id
     #   The identifier for the Data Catalog. By default, the account ID. The
     #   Data Catalog is the persistent metadata store. It contains database
@@ -2301,6 +2445,14 @@ module Aws::LakeFormation
     #   resource share ARN.
     #   @return [Types::DetailsMap]
     #
+    # @!attribute [rw] last_updated
+    #   The date and time when the resource was last updated.
+    #   @return [Time]
+    #
+    # @!attribute [rw] last_updated_by
+    #   The user who updated the record.
+    #   @return [String]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/PrincipalResourcePermissions AWS API Documentation
     #
     class PrincipalResourcePermissions < Struct.new(
@@ -2308,7 +2460,9 @@ module Aws::LakeFormation
       :resource,
       :permissions,
       :permissions_with_grant_option,
-      :additional_details)
+      :additional_details,
+      :last_updated,
+      :last_updated_by)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2408,13 +2562,20 @@ module Aws::LakeFormation
     #   Whether or not the resource is a federated resource.
     #   @return [Boolean]
     #
+    # @!attribute [rw] hybrid_access_enabled
+    #   Specifies whether the data access of tables pointing to the location
+    #   can be managed by both Lake Formation permissions as well as Amazon
+    #   S3 bucket policies.
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/RegisterResourceRequest AWS API Documentation
     #
     class RegisterResourceRequest < Struct.new(
       :resource_arn,
       :use_service_linked_role,
       :role_arn,
-      :with_federation)
+      :with_federation,
+      :hybrid_access_enabled)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -2539,13 +2700,20 @@ module Aws::LakeFormation
     #   Whether or not the resource is a federated resource.
     #   @return [Boolean]
     #
+    # @!attribute [rw] hybrid_access_enabled
+    #   Indicates whether the data access of tables pointing to the location
+    #   can be managed by both Lake Formation permissions as well as Amazon
+    #   S3 bucket policies.
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/ResourceInfo AWS API Documentation
     #
     class ResourceInfo < Struct.new(
       :resource_arn,
       :role_arn,
       :last_modified,
-      :with_federation)
+      :with_federation,
+      :hybrid_access_enabled)
       SENSITIVE = []
       include Aws::Structure
     end
@@ -3181,12 +3349,19 @@ module Aws::LakeFormation
     #   Whether or not the resource is a federated resource.
     #   @return [Boolean]
     #
+    # @!attribute [rw] hybrid_access_enabled
+    #   Specifies whether the data access of tables pointing to the location
+    #   can be managed by both Lake Formation permissions as well as Amazon
+    #   S3 bucket policies.
+    #   @return [Boolean]
+    #
     # @see http://docs.aws.amazon.com/goto/WebAPI/lakeformation-2017-03-31/UpdateResourceRequest AWS API Documentation
     #
     class UpdateResourceRequest < Struct.new(
       :role_arn,
       :resource_arn,
-      :with_federation)
+      :with_federation,
+      :hybrid_access_enabled)
       SENSITIVE = []
       include Aws::Structure
     end

data/lib/aws-sdk-lakeformation.rb CHANGED Viewed

@@ -52,6 +52,6 @@ require_relative 'aws-sdk-lakeformation/customizations'
 # @!group service
 module Aws::LakeFormation
-  GEM_VERSION = '1.39.0'
+  GEM_VERSION = '1.41.0'
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-lakeformation
 version: !ruby/object:Gem::Version
-  version: 1.39.0
+  version: 1.41.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2023-07-11 00:00:00.000000000 Z
+date: 2023-09-26 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk-core