Allows a caller in a secure environment to assume a role with permission to access Amazon S3. In order to vend such credentials, Lake Formation assumes the role associated with a registered location, for example an Amazon S3 bucket, with a scope down policy which restricts the access to a single prefix.

See also: AWS API Documentation

Request Syntax

response = client.get_temporary_glue_table_credentials(
        'AdditionalAuditContext': 'string'
  • TableArn (string) --


    The ARN identifying a table in the Data Catalog for the temporary credentials request.

  • Permissions (list) --

    Filters the request based on the user having been granted a list of specified permissions on the requested resource(s).

    • (string) --
  • DurationSeconds (integer) -- The time period, between 900 and 21,600 seconds, for the timeout of the temporary credentials.
  • AuditContext (dict) --

    A structure representing context to access a resource (column names, query ID, etc).

    • AdditionalAuditContext (string) --

      The filter engine can populate the 'AdditionalAuditContext' information with the request ID for you to track. This information will be displayed in CloudTrail log in your account.

  • SupportedPermissionTypes (list) --


    A list of supported permission types for the table. Valid values are COLUMN_PERMISSION and CELL_FILTER_PERMISSION .

    • (string) --
Return type



Response Syntax

    'AccessKeyId': 'string',
    'SecretAccessKey': 'string',
    'SessionToken': 'string',
    'Expiration': datetime(2015, 1, 1)

Response Structure

  • (dict) --

    • AccessKeyId (string) --

      The access key ID for the temporary credentials.

    • SecretAccessKey (string) --

      The secret key for the temporary credentials.

    • SessionToken (string) --

      The session token for the temporary credentials.

    • Expiration (datetime) --

      The date and time when the temporary credentials expire.


  • LakeFormation.Client.exceptions.InvalidInputException
  • LakeFormation.Client.exceptions.InternalServiceException
  • LakeFormation.Client.exceptions.OperationTimeoutException
  • LakeFormation.Client.exceptions.EntityNotFoundException
  • LakeFormation.Client.exceptions.AccessDeniedException
  • LakeFormation.Client.exceptions.PermissionTypeMismatchException