Athena.Client.
update_work_group
(**kwargs)¶Updates the workgroup with the specified name. The workgroup's name cannot be changed. Only one of ConfigurationsUpdates
or ConfigurationUpdates
can be specified; ConfigurationsUpdates
for a workgroup with multi engine support (for example, an Apache Spark enabled workgroup) or ConfigurationUpdates
for an Athena SQL workgroup.
See also: AWS API Documentation
Request Syntax
response = client.update_work_group(
WorkGroup='string',
Description='string',
ConfigurationUpdates={
'EnforceWorkGroupConfiguration': True|False,
'ResultConfigurationUpdates': {
'OutputLocation': 'string',
'RemoveOutputLocation': True|False,
'EncryptionConfiguration': {
'EncryptionOption': 'SSE_S3'|'SSE_KMS'|'CSE_KMS',
'KmsKey': 'string'
},
'RemoveEncryptionConfiguration': True|False,
'ExpectedBucketOwner': 'string',
'RemoveExpectedBucketOwner': True|False,
'AclConfiguration': {
'S3AclOption': 'BUCKET_OWNER_FULL_CONTROL'
},
'RemoveAclConfiguration': True|False
},
'PublishCloudWatchMetricsEnabled': True|False,
'BytesScannedCutoffPerQuery': 123,
'RemoveBytesScannedCutoffPerQuery': True|False,
'RequesterPaysEnabled': True|False,
'EngineVersion': {
'SelectedEngineVersion': 'string',
'EffectiveEngineVersion': 'string'
},
'RemoveCustomerContentEncryptionConfiguration': True|False,
'AdditionalConfiguration': 'string',
'ExecutionRole': 'string',
'CustomerContentEncryptionConfiguration': {
'KmsKey': 'string'
}
},
State='ENABLED'|'DISABLED'
)
[REQUIRED]
The specified workgroup that will be updated.
Contains configuration updates for an Athena SQL workgroup.
If set to "true", the settings for the workgroup override client-side settings. If set to "false" client-side settings are used. For more information, see Workgroup Settings Override Client-Side Settings.
The result configuration information about the queries in this workgroup that will be updated. Includes the updated results location and an updated option for encrypting query results.
The location in Amazon S3 where your query results are stored, such as s3://path/to/query/bucket/
. For more information, see Query Results If workgroup settings override client-side settings, then the query uses the location for the query results and the encryption configuration that are specified for the workgroup. The "workgroup settings override" is specified in EnforceWorkGroupConfiguration
(true/false) in the WorkGroupConfiguration
. See WorkGroupConfiguration$EnforceWorkGroupConfiguration.
If set to "true", indicates that the previously-specified query results location (also known as a client-side setting) for queries in this workgroup should be ignored and set to null. If set to "false" or not set, and a value is present in the OutputLocation
in ResultConfigurationUpdates
(the client-side setting), the OutputLocation
in the workgroup's ResultConfiguration
will be updated with the new value. For more information, see Workgroup Settings Override Client-Side Settings.
The encryption configuration for the query results.
Indicates whether Amazon S3 server-side encryption with Amazon S3-managed keys ( SSE_S3
), server-side encryption with KMS-managed keys ( SSE_KMS
), or client-side encryption with KMS-managed keys ( CSE_KMS
) is used.
If a query runs in a workgroup and the workgroup overrides client-side settings, then the workgroup's setting for encryption is used. It specifies whether query results must be encrypted, for all queries that run in this workgroup.
For SSE_KMS
and CSE_KMS
, this is the KMS key ARN or ID.
If set to "true", indicates that the previously-specified encryption configuration (also known as the client-side setting) for queries in this workgroup should be ignored and set to null. If set to "false" or not set, and a value is present in the EncryptionConfiguration
in ResultConfigurationUpdates
(the client-side setting), the EncryptionConfiguration
in the workgroup's ResultConfiguration
will be updated with the new value. For more information, see Workgroup Settings Override Client-Side Settings.
The Amazon Web Services account ID that you expect to be the owner of the Amazon S3 bucket specified by ResultConfiguration$OutputLocation. If set, Athena uses the value for ExpectedBucketOwner
when it makes Amazon S3 calls to your specified output location. If the ExpectedBucketOwner
Amazon Web Services account ID does not match the actual owner of the Amazon S3 bucket, the call fails with a permissions error.
If workgroup settings override client-side settings, then the query uses the ExpectedBucketOwner
setting that is specified for the workgroup, and also uses the location for storing query results specified in the workgroup. See WorkGroupConfiguration$EnforceWorkGroupConfiguration and Workgroup Settings Override Client-Side Settings.
If set to "true", removes the Amazon Web Services account ID previously specified for ResultConfiguration$ExpectedBucketOwner. If set to "false" or not set, and a value is present in the ExpectedBucketOwner
in ResultConfigurationUpdates
(the client-side setting), the ExpectedBucketOwner
in the workgroup's ResultConfiguration
is updated with the new value. For more information, see Workgroup Settings Override Client-Side Settings.
The ACL configuration for the query results.
The Amazon S3 canned ACL that Athena should specify when storing query results. Currently the only supported canned ACL is BUCKET_OWNER_FULL_CONTROL
. If a query runs in a workgroup and the workgroup overrides client-side settings, then the Amazon S3 canned ACL specified in the workgroup's settings is used for all queries that run in the workgroup. For more information about Amazon S3 canned ACLs, see Canned ACL in the Amazon S3 User Guide .
If set to true
, indicates that the previously-specified ACL configuration for queries in this workgroup should be ignored and set to null. If set to false
or not set, and a value is present in the AclConfiguration
of ResultConfigurationUpdates
, the AclConfiguration
in the workgroup's ResultConfiguration
is updated with the new value. For more information, see Workgroup Settings Override Client-Side Settings.
Indicates whether this workgroup enables publishing metrics to Amazon CloudWatch.
The upper limit (cutoff) for the amount of bytes a single query in a workgroup is allowed to scan.
Indicates that the data usage control limit per query is removed. WorkGroupConfiguration$BytesScannedCutoffPerQuery
If set to true
, allows members assigned to a workgroup to specify Amazon S3 Requester Pays buckets in queries. If set to false
, workgroup members cannot query data from Requester Pays buckets, and queries that retrieve data from Requester Pays buckets cause an error. The default is false
. For more information about Requester Pays buckets, see Requester Pays Buckets in the Amazon Simple Storage Service Developer Guide .
The engine version requested when a workgroup is updated. After the update, all queries on the workgroup run on the requested engine version. If no value was previously set, the default is Auto. Queries on the AmazonAthenaPreviewFunctionality
workgroup run on the preview engine regardless of this setting.
The engine version requested by the user. Possible values are determined by the output of ListEngineVersions
, including AUTO. The default is AUTO.
Read only. The engine version on which the query runs. If the user requests a valid engine version other than Auto, the effective engine version is the same as the engine version that the user requested. If the user requests Auto, the effective engine version is chosen by Athena. When a request to update the engine version is made by a CreateWorkGroup
or UpdateWorkGroup
operation, the EffectiveEngineVersion
field is ignored.
Removes content encryption configuration for a workgroup.
Contains a user defined string in JSON format for a Spark-enabled workgroup.
Contains the ARN of the execution role for the workgroup
Specifies the KMS key that is used to encrypt the user's data stores in Athena.
The KMS key that is used to encrypt the user's data stores in Athena.
dict
Response Syntax
{}
Response Structure
Exceptions
Athena.Client.exceptions.InternalServerException
Athena.Client.exceptions.InvalidRequestException