LakeFormation / Client / get_temporary_glue_table_credentials
get_temporary_glue_table_credentials#
- LakeFormation.Client.get_temporary_glue_table_credentials(**kwargs)#
Allows a caller in a secure environment to assume a role with permission to access Amazon S3. In order to vend such credentials, Lake Formation assumes the role associated with a registered location, for example an Amazon S3 bucket, with a scope down policy which restricts the access to a single prefix.
See also: AWS API Documentation
Request Syntax
response = client.get_temporary_glue_table_credentials( TableArn='string', Permissions=[ 'ALL'|'SELECT'|'ALTER'|'DROP'|'DELETE'|'INSERT'|'DESCRIBE'|'CREATE_DATABASE'|'CREATE_TABLE'|'DATA_LOCATION_ACCESS'|'CREATE_TAG'|'ASSOCIATE', ], DurationSeconds=123, AuditContext={ 'AdditionalAuditContext': 'string' }, SupportedPermissionTypes=[ 'COLUMN_PERMISSION'|'CELL_FILTER_PERMISSION', ] )
- Parameters:
TableArn (string) –
[REQUIRED]
The ARN identifying a table in the Data Catalog for the temporary credentials request.
Permissions (list) –
Filters the request based on the user having been granted a list of specified permissions on the requested resource(s).
(string) –
DurationSeconds (integer) – The time period, between 900 and 21,600 seconds, for the timeout of the temporary credentials.
AuditContext (dict) –
A structure representing context to access a resource (column names, query ID, etc).
AdditionalAuditContext (string) –
The filter engine can populate the ‘AdditionalAuditContext’ information with the request ID for you to track. This information will be displayed in CloudTrail log in your account.
SupportedPermissionTypes (list) –
[REQUIRED]
A list of supported permission types for the table. Valid values are
COLUMN_PERMISSION
andCELL_FILTER_PERMISSION
.(string) –
- Return type:
dict
- Returns:
Response Syntax
{ 'AccessKeyId': 'string', 'SecretAccessKey': 'string', 'SessionToken': 'string', 'Expiration': datetime(2015, 1, 1) }
Response Structure
(dict) –
AccessKeyId (string) –
The access key ID for the temporary credentials.
SecretAccessKey (string) –
The secret key for the temporary credentials.
SessionToken (string) –
The session token for the temporary credentials.
Expiration (datetime) –
The date and time when the temporary credentials expire.
Exceptions
LakeFormation.Client.exceptions.InvalidInputException
LakeFormation.Client.exceptions.InternalServiceException
LakeFormation.Client.exceptions.OperationTimeoutException
LakeFormation.Client.exceptions.EntityNotFoundException
LakeFormation.Client.exceptions.AccessDeniedException
LakeFormation.Client.exceptions.PermissionTypeMismatchException