Skip to content

Get Temporary Glue Table Credentials

lakeformation_get_temporary_glue_table_credentials R Documentation

Allows a caller in a secure environment to assume a role with permission to access Amazon S3

Description

Allows a caller in a secure environment to assume a role with permission to access Amazon S3. In order to vend such credentials, Lake Formation assumes the role associated with a registered location, for example an Amazon S3 bucket, with a scope down policy which restricts the access to a single prefix.

Usage

lakeformation_get_temporary_glue_table_credentials(TableArn,
  Permissions, DurationSeconds, AuditContext, SupportedPermissionTypes,
  S3Path, QuerySessionContext)

Arguments

TableArn

[required] The ARN identifying a table in the Data Catalog for the temporary credentials request.

Permissions

Filters the request based on the user having been granted a list of specified permissions on the requested resource(s).

DurationSeconds

The time period, between 900 and 21,600 seconds, for the timeout of the temporary credentials.

AuditContext

A structure representing context to access a resource (column names, query ID, etc).

SupportedPermissionTypes

A list of supported permission types for the table. Valid values are COLUMN_PERMISSION and CELL_FILTER_PERMISSION.

S3Path

The Amazon S3 path for the table.

QuerySessionContext

A structure used as a protocol between query engines and Lake Formation or Glue. Contains both a Lake Formation generated authorization identifier and information from the request's authorization context.

Value

A list with the following syntax:

list(
  AccessKeyId = "string",
  SecretAccessKey = "string",
  SessionToken = "string",
  Expiration = as.POSIXct(
    "2015-01-01"
  ),
  VendedS3Path = list(
    "string"
  )
)

Request syntax

svc$get_temporary_glue_table_credentials(
  TableArn = "string",
  Permissions = list(
    "ALL"|"SELECT"|"ALTER"|"DROP"|"DELETE"|"INSERT"|"DESCRIBE"|"CREATE_DATABASE"|"CREATE_TABLE"|"DATA_LOCATION_ACCESS"|"CREATE_LF_TAG"|"ASSOCIATE"|"GRANT_WITH_LF_TAG_EXPRESSION"
  ),
  DurationSeconds = 123,
  AuditContext = list(
    AdditionalAuditContext = "string"
  ),
  SupportedPermissionTypes = list(
    "COLUMN_PERMISSION"|"CELL_FILTER_PERMISSION"|"NESTED_PERMISSION"|"NESTED_CELL_PERMISSION"
  ),
  S3Path = "string",
  QuerySessionContext = list(
    QueryId = "string",
    QueryStartTime = as.POSIXct(
      "2015-01-01"
    ),
    ClusterId = "string",
    QueryAuthorizationId = "string",
    AdditionalContext = list(
      "string"
    )
  )
)