UNPKG

@pulumi/aws

Version:

A Pulumi package for creating and managing Amazon Web Services (AWS) cloud resources.

pulumi.io

pulumi/pulumi-aws

112 lines (111 loc) 4.59 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
import * as pulumi from "@pulumi/pulumi"; import * as outputs from "../types/output"; /** * Get Lake Formation principals designated as data lake administrators and lists of principal permission entries for default create database and default create table permissions. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as aws from "@pulumi/aws"; * * const example = aws.lakeformation.getDataLakeSettings({ * catalogId: "14916253649", * }); * ``` */ export declare function getDataLakeSettings(args?: GetDataLakeSettingsArgs, opts?: pulumi.InvokeOptions): Promise<GetDataLakeSettingsResult>; /** * A collection of arguments for invoking getDataLakeSettings. */ export interface GetDataLakeSettingsArgs { /** * Identifier for the Data Catalog. By default, the account ID. */ catalogId?: string; /** * Region where this resource will be [managed](https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints). Defaults to the Region set in the provider configuration. */ region?: string; } /** * A collection of values returned by getDataLakeSettings. */ export interface GetDataLakeSettingsResult { /** * List of ARNs of AWS Lake Formation principals (IAM users or roles). */ readonly admins: string[]; /** * Whether to allow Amazon EMR clusters to access data managed by Lake Formation. */ readonly allowExternalDataFiltering: boolean; /** * Whether to allow a third-party query engine to get data access credentials without session tags when a caller has full data access permissions. */ readonly allowFullTableExternalDataAccess: boolean; /** * Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag the user's role while assuming it. */ readonly authorizedSessionTagValueLists: string[]; readonly catalogId?: string; /** * Up to three configuration blocks of principal permissions for default create database permissions. Detailed below. */ readonly createDatabaseDefaultPermissions: outputs.lakeformation.GetDataLakeSettingsCreateDatabaseDefaultPermission[]; /** * Up to three configuration blocks of principal permissions for default create table permissions. Detailed below. */ readonly createTableDefaultPermissions: outputs.lakeformation.GetDataLakeSettingsCreateTableDefaultPermission[]; /** * A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform data filtering. */ readonly externalDataFilteringAllowLists: string[]; /** * The provider-assigned unique ID for this managed resource. */ readonly id: string; /** * Key-value map of additional configuration. `CROSS_ACCOUNT_VERSION` will be set to values `"1"`, `"2"`, `"3"`, or `"4"`. `SET_CONTEXT` will also be returned with a value of `TRUE`. In a fresh account, prior to configuring, `CROSS_ACCOUNT_VERSION` is `"1"`. */ readonly parameters: { [key: string]: string; }; /** * List of ARNs of AWS Lake Formation principals (IAM users or roles) with only view access to the resources. */ readonly readOnlyAdmins: string[]; readonly region: string; /** * List of the resource-owning account IDs that the caller's account can use to share their user access details (user ARNs). */ readonly trustedResourceOwners: string[]; } /** * Get Lake Formation principals designated as data lake administrators and lists of principal permission entries for default create database and default create table permissions. * * ## Example Usage * * ```typescript * import * as pulumi from "@pulumi/pulumi"; * import * as aws from "@pulumi/aws"; * * const example = aws.lakeformation.getDataLakeSettings({ * catalogId: "14916253649", * }); * ``` */ export declare function getDataLakeSettingsOutput(args?: GetDataLakeSettingsOutputArgs, opts?: pulumi.InvokeOutputOptions): pulumi.Output<GetDataLakeSettingsResult>; /** * A collection of arguments for invoking getDataLakeSettings. */ export interface GetDataLakeSettingsOutputArgs { /** * Identifier for the Data Catalog. By default, the account ID. */ catalogId?: pulumi.Input<string>; /** * Region where this resource will be [managed](https://docs.aws.amazon.com/general/latest/gr/rande.html#regional-endpoints). Defaults to the Region set in the provider configuration. */ region?: pulumi.Input<string>; }