Class: Aws::LakeFormation::Types::RevokePermissionsRequest

Inherits:

Struct

• Object
• Struct
• Aws::LakeFormation::Types::RevokePermissionsRequest

Defined in:

gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb

Overview

Note:

When making an API call, you may pass RevokePermissionsRequest data as a hash:

{
  catalog_id: "CatalogIdString",
  principal: { # required
    data_lake_principal_identifier: "DataLakePrincipalString",
  },
  resource: { # required
    catalog: {
    },
    database: {
      catalog_id: "CatalogIdString",
      name: "NameString", # required
    },
    table: {
      catalog_id: "CatalogIdString",
      database_name: "NameString", # required
      name: "NameString",
      table_wildcard: {
      },
    },
    table_with_columns: {
      catalog_id: "CatalogIdString",
      database_name: "NameString", # required
      name: "NameString", # required
      column_names: ["NameString"],
      column_wildcard: {
        excluded_column_names: ["NameString"],
      },
    },
    data_location: {
      catalog_id: "CatalogIdString",
      resource_arn: "ResourceArnString", # required
    },
    data_cells_filter: {
      table_catalog_id: "CatalogIdString",
      database_name: "NameString",
      table_name: "NameString",
      name: "NameString",
    },
    lf_tag: {
      catalog_id: "CatalogIdString",
      tag_key: "NameString", # required
      tag_values: ["LFTagValue"], # required
    },
    lf_tag_policy: {
      catalog_id: "CatalogIdString",
      resource_type: "DATABASE", # required, accepts DATABASE, TABLE
      expression: [ # required
        {
          tag_key: "LFTagKey", # required
          tag_values: ["LFTagValue"], # required
        },
      ],
    },
  },
  permissions: ["ALL"], # required, accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
  permissions_with_grant_option: ["ALL"], # accepts ALL, SELECT, ALTER, DROP, DELETE, INSERT, DESCRIBE, CREATE_DATABASE, CREATE_TABLE, DATA_LOCATION_ACCESS, CREATE_TAG, ASSOCIATE
}

See Also:

• AWS API Documentation

Constant Summary

SENSITIVE =

[]

Instance Attribute Summary

• #catalog_id ⇒ String

  The identifier for the Data Catalog.

• #permissions ⇒ Array<String>

  The permissions revoked to the principal on the resource.

• #permissions_with_grant_option ⇒ Array<String>

  Indicates a list of permissions for which to revoke the grant option allowing the principal to pass permissions to other principals.

• #principal ⇒ Types::DataLakePrincipal

  The principal to be revoked permissions on the resource.

• #resource ⇒ Types::Resource

  The resource to which permissions are to be revoked.

Instance Attribute Details

#catalog_id ⇒ String

The identifier for the Data Catalog. By default, the account ID. The Data Catalog is the persistent metadata store. It contains database definitions, table definitions, and other control information to manage your Lake Formation environment.

Returns:

• (String)

# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#permissions ⇒ Array<String>

The permissions revoked to the principal on the resource. For information about permissions, see Security and Access Control to Metadata and Data.

Returns:

• (Array<String>)

# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#permissions_with_grant_option ⇒ Array<String>

Indicates a list of permissions for which to revoke the grant option allowing the principal to pass permissions to other principals.

Returns:

• (Array<String>)

# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#principal ⇒ Types::DataLakePrincipal

The principal to be revoked permissions on the resource.

Returns:

• (Types::DataLakePrincipal)

# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end

#resource ⇒ Types::Resource

The resource to which permissions are to be revoked.

Returns:

• (Types::Resource)

# File 'gems/aws-sdk-lakeformation/lib/aws-sdk-lakeformation/types.rb', line 3618

class RevokePermissionsRequest < Struct.new(
  :catalog_id,
  :principal,
  :resource,
  :permissions,
  :permissions_with_grant_option)
  SENSITIVE = []
  include Aws::Structure
end