Class: Aws::LakeFormation::Types::RevokePermissionsRequest

Inherits:
Struct
  • Object
show all
Defined in:
gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb

Overview

Note:

When making an API call, you may pass RevokePermissionsRequest data as a hash:

{
  catalog_id: "CatalogIdString",
  principal: { # required
    data_lake_principal_identifier: "DataLakePrincipalString",
  },
  resource: { # required
    catalog: {
    },
    database: {
      catalog_id: "CatalogIdString",
      name: "NameString", # required
    },
    table: {
      catalog_id: "CatalogIdString",
      database_name: "NameString", # required
      name: "NameString",
      table_wildcard: {
      },
    },
    table_with_columns: {
      catalog_id: "CatalogIdString",
      database_name: "NameString", # required
      name: "NameString", # required
      column_names: ["NameString"],
      column_wildcard: {
        excluded_column_names: ["NameString"],
      },
    },
    data_location: {
      catalog_id: "CatalogIdString",
      resource_arn: "ResourceArnString", # required
    },
    data_cells_filter: {
      table_catalog_id: "CatalogIdString",
      database_name: "NameString",
      table_name: "NameString",
      name: "NameString",
    },
    lf_tag: {
      catalog_id: "CatalogIdString",
      tag_key: "NameString", # required
      tag_values: ["LFTagValue"], # required
    },
    lf_tag_policy: {
      catalog_id: "CatalogIdString",
      resource_type: "DATABASE", # required, accepts DATABASE, TABLE
      expression: [ # required
        {
          tag_key: "LFTagKey", # required
          tag_values: ["LFTagValue"], # required
        },
      ],
    },
  },
  permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
  permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
}

Constant Summary collapse

SENSITIVE =
[]

Instance Attribute Summary collapse

Instance Attribute Details

#catalog_idString

The identifier for the Data Catalog. By default, the account ID. The Data Catalog is the persistent metadata store. It contains database definitions, table definitions, and other control information to manage your Lake Formation environment.

Returns:

  • (String)


3618
3619
3620
3621
3622
3623
3624
3625
3626
# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#permissionsArray<String>

The permissions revoked to the principal on the resource. For information about permissions, see Security and Access Control to Metadata and Data.

Returns:

  • (Array<String>)


3618
3619
3620
3621
3622
3623
3624
3625
3626
# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#permissions_with_grant_optionArray<String>

Indicates a list of permissions for which to revoke the grant option allowing the principal to pass permissions to other principals.

Returns:

  • (Array<String>)


3618
3619
3620
3621
3622
3623
3624
3625
3626
# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#principalTypes::DataLakePrincipal

The principal to be revoked permissions on the resource.



3618
3619
3620
3621
3622
3623
3624
3625
3626
# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#resourceTypes::Resource

The resource to which permissions are to be revoked.

Returns:



3618
3619
3620
3621
3622
3623
3624
3625
3626
# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end