Package software.amazon.awscdk.cfnpropertymixins.services.lakeformation

Class CfnDataLakeSettingsMixinProps.Builder

java.lang.Object
software.amazon.awscdk.cfnpropertymixins.services.lakeformation.CfnDataLakeSettingsMixinProps.Builder
All Implemented Interfaces:
software.amazon.jsii.Builder<CfnDataLakeSettingsMixinProps>
Enclosing interface:
CfnDataLakeSettingsMixinProps
@Stability(Stable) public static final class CfnDataLakeSettingsMixinProps.Builder extends Object implements software.amazon.jsii.Builder<CfnDataLakeSettingsMixinProps>
A builder for CfnDataLakeSettingsMixinProps

  • Constructor Details

    • Builder

      public Builder()

  • Method Details

    • admins

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder admins(IResolvable admins)
      Sets the value of CfnDataLakeSettingsMixinProps.getAdmins()
      Parameters:
      admins - A list of AWS Lake Formation principals.
      Returns:
      this

    • admins

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder admins(List<? extends Object> admins)
      Sets the value of CfnDataLakeSettingsMixinProps.getAdmins()
      Parameters:
      admins - A list of AWS Lake Formation principals.
      Returns:
      this

    • allowExternalDataFiltering

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder allowExternalDataFiltering(Boolean allowExternalDataFiltering)
      Sets the value of CfnDataLakeSettingsMixinProps.getAllowExternalDataFiltering()
      Parameters:
      allowExternalDataFiltering - Whether to allow Amazon EMR clusters or other third-party query engines to access data managed by Lake Formation . If set to true, you allow Amazon EMR clusters or other third-party engines to access data in Amazon S3 locations that are registered with Lake Formation .

      If false or null, no third-party query engines will be able to access data in Amazon S3 locations that are registered with Lake Formation.

      For more information, see External data filtering setting .

      Returns:
      this

    • allowExternalDataFiltering

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder allowExternalDataFiltering(IResolvable allowExternalDataFiltering)
      Sets the value of CfnDataLakeSettingsMixinProps.getAllowExternalDataFiltering()
      Parameters:
      allowExternalDataFiltering - Whether to allow Amazon EMR clusters or other third-party query engines to access data managed by Lake Formation . If set to true, you allow Amazon EMR clusters or other third-party engines to access data in Amazon S3 locations that are registered with Lake Formation .

      If false or null, no third-party query engines will be able to access data in Amazon S3 locations that are registered with Lake Formation.

      For more information, see External data filtering setting .

      Returns:
      this

    • allowFullTableExternalDataAccess

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder allowFullTableExternalDataAccess(Boolean allowFullTableExternalDataAccess)
      Sets the value of CfnDataLakeSettingsMixinProps.getAllowFullTableExternalDataAccess()
      Parameters:
      allowFullTableExternalDataAccess - Specifies whether query engines and applications can get credentials without IAM session tags if the user has full table access. It provides query engines and applications performance benefits as well as simplifies data access. Amazon EMR on Amazon EC2 is able to leverage this setting.

      For more information, see

      Returns:
      this

    • allowFullTableExternalDataAccess

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder allowFullTableExternalDataAccess(IResolvable allowFullTableExternalDataAccess)
      Sets the value of CfnDataLakeSettingsMixinProps.getAllowFullTableExternalDataAccess()
      Parameters:
      allowFullTableExternalDataAccess - Specifies whether query engines and applications can get credentials without IAM session tags if the user has full table access. It provides query engines and applications performance benefits as well as simplifies data access. Amazon EMR on Amazon EC2 is able to leverage this setting.

      For more information, see

      Returns:
      this

    • authorizedSessionTagValueList

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder authorizedSessionTagValueList(List<String> authorizedSessionTagValueList)
      Sets the value of CfnDataLakeSettingsMixinProps.getAuthorizedSessionTagValueList()
      Parameters:
      authorizedSessionTagValueList - Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag the user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example key = "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the temporary security credentials that will be used to call Lake Formation 's administrative API operations.
      Returns:
      this

    • createDatabaseDefaultPermissions

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder createDatabaseDefaultPermissions(IResolvable createDatabaseDefaultPermissions)
      Sets the value of CfnDataLakeSettingsMixinProps.getCreateDatabaseDefaultPermissions()
      Parameters:
      createDatabaseDefaultPermissions - Specifies whether access control on a newly created database is managed by Lake Formation permissions or exclusively by IAM permissions. A null value indicates that the access is controlled by Lake Formation permissions. ALL permissions assigned to IAM_ALLOWED_PRINCIPALS group indicates that the user's IAM permissions determine the access to the database. This is referred to as the setting "Use only IAM access control," and is to support backward compatibility with the AWS Glue permission model implemented by IAM permissions.

      The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to IAM_ALLOWED_PRINCIPALS .

      For more information, see Changing the default security settings for your data lake .

      Returns:
      this

    • createDatabaseDefaultPermissions

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder createDatabaseDefaultPermissions(List<? extends Object> createDatabaseDefaultPermissions)
      Sets the value of CfnDataLakeSettingsMixinProps.getCreateDatabaseDefaultPermissions()
      Parameters:
      createDatabaseDefaultPermissions - Specifies whether access control on a newly created database is managed by Lake Formation permissions or exclusively by IAM permissions. A null value indicates that the access is controlled by Lake Formation permissions. ALL permissions assigned to IAM_ALLOWED_PRINCIPALS group indicates that the user's IAM permissions determine the access to the database. This is referred to as the setting "Use only IAM access control," and is to support backward compatibility with the AWS Glue permission model implemented by IAM permissions.

      The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to IAM_ALLOWED_PRINCIPALS .

      For more information, see Changing the default security settings for your data lake .

      Returns:
      this

    • createTableDefaultPermissions

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder createTableDefaultPermissions(IResolvable createTableDefaultPermissions)
      Sets the value of CfnDataLakeSettingsMixinProps.getCreateTableDefaultPermissions()
      Parameters:
      createTableDefaultPermissions - Specifies whether access control on a newly created table is managed by Lake Formation permissions or exclusively by IAM permissions. A null value indicates that the access is controlled by Lake Formation permissions. ALL permissions assigned to IAM_ALLOWED_PRINCIPALS group indicate that the user's IAM permissions determine the access to the table. This is referred to as the setting "Use only IAM access control," and is to support the backward compatibility with the AWS Glue permission model implemented by IAM permissions.

      The only permitted values are an empty array or an array that contains a single JSON object that grants ALL permissions to IAM_ALLOWED_PRINCIPALS .

      For more information, see Changing the default security settings for your data lake .

      Returns:
      this

    • createTableDefaultPermissions

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder createTableDefaultPermissions(List<? extends Object> createTableDefaultPermissions)
      Sets the value of CfnDataLakeSettingsMixinProps.getCreateTableDefaultPermissions()
      Parameters:
      createTableDefaultPermissions - Specifies whether access control on a newly created table is managed by Lake Formation permissions or exclusively by IAM permissions. A null value indicates that the access is controlled by Lake Formation permissions. ALL permissions assigned to IAM_ALLOWED_PRINCIPALS group indicate that the user's IAM permissions determine the access to the table. This is referred to as the setting "Use only IAM access control," and is to support the backward compatibility with the AWS Glue permission model implemented by IAM permissions.

      The only permitted values are an empty array or an array that contains a single JSON object that grants ALL permissions to IAM_ALLOWED_PRINCIPALS .

      For more information, see Changing the default security settings for your data lake .

      Returns:
      this

    • externalDataFilteringAllowList

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder externalDataFilteringAllowList(IResolvable externalDataFilteringAllowList)
      Sets the value of CfnDataLakeSettingsMixinProps.getExternalDataFilteringAllowList()
      Parameters:
      externalDataFilteringAllowList - A list of the account IDs of AWS accounts with Amazon EMR clusters or third-party engines that are allwed to perform data filtering.
      Returns:
      this

    • externalDataFilteringAllowList

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder externalDataFilteringAllowList(List<? extends Object> externalDataFilteringAllowList)
      Sets the value of CfnDataLakeSettingsMixinProps.getExternalDataFilteringAllowList()
      Parameters:
      externalDataFilteringAllowList - A list of the account IDs of AWS accounts with Amazon EMR clusters or third-party engines that are allwed to perform data filtering.
      Returns:
      this

    • mutationType

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder mutationType(String mutationType)
      Sets the value of CfnDataLakeSettingsMixinProps.getMutationType()
      Parameters:
      mutationType - Specifies whether the data lake settings are updated by adding new values to the current settings ( APPEND ) or by replacing the current settings with new settings ( REPLACE ).

      If you choose REPLACE , your current data lake settings will be replaced with the new values in your template.

      Returns:
      this

    • parameters

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder parameters(Object parameters)
      Sets the value of CfnDataLakeSettingsMixinProps.getParameters()
      Parameters:
      parameters - A key-value map that provides an additional configuration on your data lake. CrossAccountVersion is the key you can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, 3, and 4.
      Returns:
      this

    • readOnlyAdmins

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder readOnlyAdmins(IResolvable readOnlyAdmins)
      Sets the value of CfnDataLakeSettingsMixinProps.getReadOnlyAdmins()
      Parameters:
      readOnlyAdmins - the value to be set.
      Returns:
      this

    • readOnlyAdmins

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder readOnlyAdmins(List<? extends Object> readOnlyAdmins)
      Sets the value of CfnDataLakeSettingsMixinProps.getReadOnlyAdmins()
      Parameters:
      readOnlyAdmins - the value to be set.
      Returns:
      this

    • trustedResourceOwners

      @Stability(Stable) public CfnDataLakeSettingsMixinProps.Builder trustedResourceOwners(List<String> trustedResourceOwners)
      Sets the value of CfnDataLakeSettingsMixinProps.getTrustedResourceOwners()
      Parameters:
      trustedResourceOwners - An array of UTF-8 strings. A list of the resource-owning account IDs that the caller's account can use to share their user access details (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log. You may want to specify this property when you are in a high-trust boundary, such as the same team or company.
      Returns:
      this

    • build

      @Stability(Stable) public CfnDataLakeSettingsMixinProps build()
      Builds the configured instance.
      Specified by:
      build in interface software.amazon.jsii.Builder<CfnDataLakeSettingsMixinProps>
      Returns:
      a new instance of CfnDataLakeSettingsMixinProps
      Throws:
      NullPointerException - if any required attribute was not provided