All Downloads are FREE. Search and download functionalities are using the official Maven repository.

com.amazonaws.services.lakeformation.model.DataLakeSettings Maven / Gradle / Ivy

Go to download

The AWS Java SDK for AWS Lake Formation module holds the client classes that are used for communicating with AWS Lake Formation Service

There is a newer version: 1.12.778
Show newest version
/*
 * Copyright 2019-2024 Amazon.com, Inc. or its affiliates. All Rights Reserved.
 * 
 * Licensed under the Apache License, Version 2.0 (the "License"). You may not use this file except in compliance with
 * the License. A copy of the License is located at
 * 
 * http://aws.amazon.com/apache2.0
 * 
 * or in the "license" file accompanying this file. This file is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
 * CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions
 * and limitations under the License.
 */
package com.amazonaws.services.lakeformation.model;

import java.io.Serializable;
import javax.annotation.Generated;
import com.amazonaws.protocol.StructuredPojo;
import com.amazonaws.protocol.ProtocolMarshaller;

/**
 * 

* A structure representing a list of Lake Formation principals designated as data lake administrators and lists of * principal permission entries for default create database and default create table permissions. *

* * @see AWS API * Documentation */ @Generated("com.amazonaws:aws-java-sdk-code-generator") public class DataLakeSettings implements Serializable, Cloneable, StructuredPojo { /** *

* A list of Lake Formation principals. Supported principals are IAM users or IAM roles. *

*/ private java.util.List dataLakeAdmins; /** *

* A list of Lake Formation principals with only view access to the resources, without the ability to make changes. * Supported principals are IAM users or IAM roles. *

*/ private java.util.List readOnlyAdmins; /** *

* Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

*/ private java.util.List createDatabaseDefaultPermissions; /** *

* Specifies whether access control on newly created table is managed by Lake Formation permissions or exclusively * by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

*/ private java.util.List createTableDefaultPermissions; /** *

* A key-value map that provides an additional configuration on your data lake. CROSS_ACCOUNT_VERSION is the key you * can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, 3, and 4. *

*/ private java.util.Map parameters; /** *

* A list of the resource-owning account IDs that the caller's account can use to share their user access details * (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log. *

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or company. *

*/ private java.util.List trustedResourceOwners; /** *

* Whether to allow Amazon EMR clusters to access data managed by Lake Formation. *

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with Lake * Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are registered * with Lake Formation. *

*

* For more information, see (Optional) * Allow external data filtering. *

*/ private Boolean allowExternalDataFiltering; /** *

* Whether to allow a third-party query engine to get data access credentials without session tags when a caller has * full data access permissions. *

*/ private Boolean allowFullTableExternalDataAccess; /** *

* A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform data * filtering.> *

*/ private java.util.List externalDataFilteringAllowList; /** *

* Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag the * user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example key = * "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the temporary * security credentials that will be used to call Lake Formation's administrative APIs. *

*/ private java.util.List authorizedSessionTagValueList; /** *

* A list of Lake Formation principals. Supported principals are IAM users or IAM roles. *

* * @return A list of Lake Formation principals. Supported principals are IAM users or IAM roles. */ public java.util.List getDataLakeAdmins() { return dataLakeAdmins; } /** *

* A list of Lake Formation principals. Supported principals are IAM users or IAM roles. *

* * @param dataLakeAdmins * A list of Lake Formation principals. Supported principals are IAM users or IAM roles. */ public void setDataLakeAdmins(java.util.Collection dataLakeAdmins) { if (dataLakeAdmins == null) { this.dataLakeAdmins = null; return; } this.dataLakeAdmins = new java.util.ArrayList(dataLakeAdmins); } /** *

* A list of Lake Formation principals. Supported principals are IAM users or IAM roles. *

*

* NOTE: This method appends the values to the existing list (if any). Use * {@link #setDataLakeAdmins(java.util.Collection)} or {@link #withDataLakeAdmins(java.util.Collection)} if you want * to override the existing values. *

* * @param dataLakeAdmins * A list of Lake Formation principals. Supported principals are IAM users or IAM roles. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withDataLakeAdmins(DataLakePrincipal... dataLakeAdmins) { if (this.dataLakeAdmins == null) { setDataLakeAdmins(new java.util.ArrayList(dataLakeAdmins.length)); } for (DataLakePrincipal ele : dataLakeAdmins) { this.dataLakeAdmins.add(ele); } return this; } /** *

* A list of Lake Formation principals. Supported principals are IAM users or IAM roles. *

* * @param dataLakeAdmins * A list of Lake Formation principals. Supported principals are IAM users or IAM roles. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withDataLakeAdmins(java.util.Collection dataLakeAdmins) { setDataLakeAdmins(dataLakeAdmins); return this; } /** *

* A list of Lake Formation principals with only view access to the resources, without the ability to make changes. * Supported principals are IAM users or IAM roles. *

* * @return A list of Lake Formation principals with only view access to the resources, without the ability to make * changes. Supported principals are IAM users or IAM roles. */ public java.util.List getReadOnlyAdmins() { return readOnlyAdmins; } /** *

* A list of Lake Formation principals with only view access to the resources, without the ability to make changes. * Supported principals are IAM users or IAM roles. *

* * @param readOnlyAdmins * A list of Lake Formation principals with only view access to the resources, without the ability to make * changes. Supported principals are IAM users or IAM roles. */ public void setReadOnlyAdmins(java.util.Collection readOnlyAdmins) { if (readOnlyAdmins == null) { this.readOnlyAdmins = null; return; } this.readOnlyAdmins = new java.util.ArrayList(readOnlyAdmins); } /** *

* A list of Lake Formation principals with only view access to the resources, without the ability to make changes. * Supported principals are IAM users or IAM roles. *

*

* NOTE: This method appends the values to the existing list (if any). Use * {@link #setReadOnlyAdmins(java.util.Collection)} or {@link #withReadOnlyAdmins(java.util.Collection)} if you want * to override the existing values. *

* * @param readOnlyAdmins * A list of Lake Formation principals with only view access to the resources, without the ability to make * changes. Supported principals are IAM users or IAM roles. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withReadOnlyAdmins(DataLakePrincipal... readOnlyAdmins) { if (this.readOnlyAdmins == null) { setReadOnlyAdmins(new java.util.ArrayList(readOnlyAdmins.length)); } for (DataLakePrincipal ele : readOnlyAdmins) { this.readOnlyAdmins.add(ele); } return this; } /** *

* A list of Lake Formation principals with only view access to the resources, without the ability to make changes. * Supported principals are IAM users or IAM roles. *

* * @param readOnlyAdmins * A list of Lake Formation principals with only view access to the resources, without the ability to make * changes. Supported principals are IAM users or IAM roles. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withReadOnlyAdmins(java.util.Collection readOnlyAdmins) { setReadOnlyAdmins(readOnlyAdmins); return this; } /** *

* Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

* * @return Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. */ public java.util.List getCreateDatabaseDefaultPermissions() { return createDatabaseDefaultPermissions; } /** *

* Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

* * @param createDatabaseDefaultPermissions * Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. */ public void setCreateDatabaseDefaultPermissions(java.util.Collection createDatabaseDefaultPermissions) { if (createDatabaseDefaultPermissions == null) { this.createDatabaseDefaultPermissions = null; return; } this.createDatabaseDefaultPermissions = new java.util.ArrayList(createDatabaseDefaultPermissions); } /** *

* Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

*

* NOTE: This method appends the values to the existing list (if any). Use * {@link #setCreateDatabaseDefaultPermissions(java.util.Collection)} or * {@link #withCreateDatabaseDefaultPermissions(java.util.Collection)} if you want to override the existing values. *

* * @param createDatabaseDefaultPermissions * Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withCreateDatabaseDefaultPermissions(PrincipalPermissions... createDatabaseDefaultPermissions) { if (this.createDatabaseDefaultPermissions == null) { setCreateDatabaseDefaultPermissions(new java.util.ArrayList(createDatabaseDefaultPermissions.length)); } for (PrincipalPermissions ele : createDatabaseDefaultPermissions) { this.createDatabaseDefaultPermissions.add(ele); } return this; } /** *

* Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

* * @param createDatabaseDefaultPermissions * Specifies whether access control on newly created database is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withCreateDatabaseDefaultPermissions(java.util.Collection createDatabaseDefaultPermissions) { setCreateDatabaseDefaultPermissions(createDatabaseDefaultPermissions); return this; } /** *

* Specifies whether access control on newly created table is managed by Lake Formation permissions or exclusively * by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

* * @return Specifies whether access control on newly created table is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. */ public java.util.List getCreateTableDefaultPermissions() { return createTableDefaultPermissions; } /** *

* Specifies whether access control on newly created table is managed by Lake Formation permissions or exclusively * by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

* * @param createTableDefaultPermissions * Specifies whether access control on newly created table is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. */ public void setCreateTableDefaultPermissions(java.util.Collection createTableDefaultPermissions) { if (createTableDefaultPermissions == null) { this.createTableDefaultPermissions = null; return; } this.createTableDefaultPermissions = new java.util.ArrayList(createTableDefaultPermissions); } /** *

* Specifies whether access control on newly created table is managed by Lake Formation permissions or exclusively * by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

*

* NOTE: This method appends the values to the existing list (if any). Use * {@link #setCreateTableDefaultPermissions(java.util.Collection)} or * {@link #withCreateTableDefaultPermissions(java.util.Collection)} if you want to override the existing values. *

* * @param createTableDefaultPermissions * Specifies whether access control on newly created table is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withCreateTableDefaultPermissions(PrincipalPermissions... createTableDefaultPermissions) { if (this.createTableDefaultPermissions == null) { setCreateTableDefaultPermissions(new java.util.ArrayList(createTableDefaultPermissions.length)); } for (PrincipalPermissions ele : createTableDefaultPermissions) { this.createTableDefaultPermissions.add(ele); } return this; } /** *

* Specifies whether access control on newly created table is managed by Lake Formation permissions or exclusively * by IAM permissions. *

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model implemented by * IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants ALL to * IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default Security * Settings for Your Data Lake. *

* * @param createTableDefaultPermissions * Specifies whether access control on newly created table is managed by Lake Formation permissions or * exclusively by IAM permissions.

*

* A null value indicates access control by Lake Formation permissions. A value that assigns ALL to * IAM_ALLOWED_PRINCIPALS indicates access control by IAM permissions. This is referred to as the setting * "Use only IAM access control," and is for backward compatibility with the Glue permission model * implemented by IAM permissions. *

*

* The only permitted values are an empty array or an array that contains a single JSON object that grants * ALL to IAM_ALLOWED_PRINCIPALS. *

*

* For more information, see Changing the Default * Security Settings for Your Data Lake. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withCreateTableDefaultPermissions(java.util.Collection createTableDefaultPermissions) { setCreateTableDefaultPermissions(createTableDefaultPermissions); return this; } /** *

* A key-value map that provides an additional configuration on your data lake. CROSS_ACCOUNT_VERSION is the key you * can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, 3, and 4. *

* * @return A key-value map that provides an additional configuration on your data lake. CROSS_ACCOUNT_VERSION is the * key you can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, * 3, and 4. */ public java.util.Map getParameters() { return parameters; } /** *

* A key-value map that provides an additional configuration on your data lake. CROSS_ACCOUNT_VERSION is the key you * can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, 3, and 4. *

* * @param parameters * A key-value map that provides an additional configuration on your data lake. CROSS_ACCOUNT_VERSION is the * key you can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, * 3, and 4. */ public void setParameters(java.util.Map parameters) { this.parameters = parameters; } /** *

* A key-value map that provides an additional configuration on your data lake. CROSS_ACCOUNT_VERSION is the key you * can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, 3, and 4. *

* * @param parameters * A key-value map that provides an additional configuration on your data lake. CROSS_ACCOUNT_VERSION is the * key you can configure in the Parameters field. Accepted values for the CrossAccountVersion key are 1, 2, * 3, and 4. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withParameters(java.util.Map parameters) { setParameters(parameters); return this; } /** * Add a single Parameters entry * * @see DataLakeSettings#withParameters * @returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings addParametersEntry(String key, String value) { if (null == this.parameters) { this.parameters = new java.util.HashMap(); } if (this.parameters.containsKey(key)) throw new IllegalArgumentException("Duplicated keys (" + key.toString() + ") are provided."); this.parameters.put(key, value); return this; } /** * Removes all the entries added into Parameters. * * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings clearParametersEntries() { this.parameters = null; return this; } /** *

* A list of the resource-owning account IDs that the caller's account can use to share their user access details * (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log. *

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or company. *

* * @return A list of the resource-owning account IDs that the caller's account can use to share their user access * details (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log.

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or * company. */ public java.util.List getTrustedResourceOwners() { return trustedResourceOwners; } /** *

* A list of the resource-owning account IDs that the caller's account can use to share their user access details * (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log. *

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or company. *

* * @param trustedResourceOwners * A list of the resource-owning account IDs that the caller's account can use to share their user access * details (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log.

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or * company. */ public void setTrustedResourceOwners(java.util.Collection trustedResourceOwners) { if (trustedResourceOwners == null) { this.trustedResourceOwners = null; return; } this.trustedResourceOwners = new java.util.ArrayList(trustedResourceOwners); } /** *

* A list of the resource-owning account IDs that the caller's account can use to share their user access details * (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log. *

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or company. *

*

* NOTE: This method appends the values to the existing list (if any). Use * {@link #setTrustedResourceOwners(java.util.Collection)} or * {@link #withTrustedResourceOwners(java.util.Collection)} if you want to override the existing values. *

* * @param trustedResourceOwners * A list of the resource-owning account IDs that the caller's account can use to share their user access * details (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log.

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or * company. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withTrustedResourceOwners(String... trustedResourceOwners) { if (this.trustedResourceOwners == null) { setTrustedResourceOwners(new java.util.ArrayList(trustedResourceOwners.length)); } for (String ele : trustedResourceOwners) { this.trustedResourceOwners.add(ele); } return this; } /** *

* A list of the resource-owning account IDs that the caller's account can use to share their user access details * (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log. *

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or company. *

* * @param trustedResourceOwners * A list of the resource-owning account IDs that the caller's account can use to share their user access * details (user ARNs). The user ARNs can be logged in the resource owner's CloudTrail log.

*

* You may want to specify this property when you are in a high-trust boundary, such as the same team or * company. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withTrustedResourceOwners(java.util.Collection trustedResourceOwners) { setTrustedResourceOwners(trustedResourceOwners); return this; } /** *

* Whether to allow Amazon EMR clusters to access data managed by Lake Formation. *

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with Lake * Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are registered * with Lake Formation. *

*

* For more information, see (Optional) * Allow external data filtering. *

* * @param allowExternalDataFiltering * Whether to allow Amazon EMR clusters to access data managed by Lake Formation.

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with Lake * Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are * registered with Lake Formation. *

*

* For more information, see (Optional) Allow external data filtering. */ public void setAllowExternalDataFiltering(Boolean allowExternalDataFiltering) { this.allowExternalDataFiltering = allowExternalDataFiltering; } /** *

* Whether to allow Amazon EMR clusters to access data managed by Lake Formation. *

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with Lake * Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are registered * with Lake Formation. *

*

* For more information, see (Optional) * Allow external data filtering. *

* * @return Whether to allow Amazon EMR clusters to access data managed by Lake Formation.

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with * Lake Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are * registered with Lake Formation. *

*

* For more information, see (Optional) Allow external data filtering. */ public Boolean getAllowExternalDataFiltering() { return this.allowExternalDataFiltering; } /** *

* Whether to allow Amazon EMR clusters to access data managed by Lake Formation. *

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with Lake * Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are registered * with Lake Formation. *

*

* For more information, see (Optional) * Allow external data filtering. *

* * @param allowExternalDataFiltering * Whether to allow Amazon EMR clusters to access data managed by Lake Formation.

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with Lake * Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are * registered with Lake Formation. *

*

* For more information, see (Optional) Allow external data filtering. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withAllowExternalDataFiltering(Boolean allowExternalDataFiltering) { setAllowExternalDataFiltering(allowExternalDataFiltering); return this; } /** *

* Whether to allow Amazon EMR clusters to access data managed by Lake Formation. *

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with Lake * Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are registered * with Lake Formation. *

*

* For more information, see (Optional) * Allow external data filtering. *

* * @return Whether to allow Amazon EMR clusters to access data managed by Lake Formation.

*

* If true, you allow Amazon EMR clusters to access data in Amazon S3 locations that are registered with * Lake Formation. *

*

* If false or null, no Amazon EMR clusters will be able to access data in Amazon S3 locations that are * registered with Lake Formation. *

*

* For more information, see (Optional) Allow external data filtering. */ public Boolean isAllowExternalDataFiltering() { return this.allowExternalDataFiltering; } /** *

* Whether to allow a third-party query engine to get data access credentials without session tags when a caller has * full data access permissions. *

* * @param allowFullTableExternalDataAccess * Whether to allow a third-party query engine to get data access credentials without session tags when a * caller has full data access permissions. */ public void setAllowFullTableExternalDataAccess(Boolean allowFullTableExternalDataAccess) { this.allowFullTableExternalDataAccess = allowFullTableExternalDataAccess; } /** *

* Whether to allow a third-party query engine to get data access credentials without session tags when a caller has * full data access permissions. *

* * @return Whether to allow a third-party query engine to get data access credentials without session tags when a * caller has full data access permissions. */ public Boolean getAllowFullTableExternalDataAccess() { return this.allowFullTableExternalDataAccess; } /** *

* Whether to allow a third-party query engine to get data access credentials without session tags when a caller has * full data access permissions. *

* * @param allowFullTableExternalDataAccess * Whether to allow a third-party query engine to get data access credentials without session tags when a * caller has full data access permissions. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withAllowFullTableExternalDataAccess(Boolean allowFullTableExternalDataAccess) { setAllowFullTableExternalDataAccess(allowFullTableExternalDataAccess); return this; } /** *

* Whether to allow a third-party query engine to get data access credentials without session tags when a caller has * full data access permissions. *

* * @return Whether to allow a third-party query engine to get data access credentials without session tags when a * caller has full data access permissions. */ public Boolean isAllowFullTableExternalDataAccess() { return this.allowFullTableExternalDataAccess; } /** *

* A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform data * filtering.> *

* * @return A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform * data filtering.> */ public java.util.List getExternalDataFilteringAllowList() { return externalDataFilteringAllowList; } /** *

* A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform data * filtering.> *

* * @param externalDataFilteringAllowList * A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform * data filtering.> */ public void setExternalDataFilteringAllowList(java.util.Collection externalDataFilteringAllowList) { if (externalDataFilteringAllowList == null) { this.externalDataFilteringAllowList = null; return; } this.externalDataFilteringAllowList = new java.util.ArrayList(externalDataFilteringAllowList); } /** *

* A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform data * filtering.> *

*

* NOTE: This method appends the values to the existing list (if any). Use * {@link #setExternalDataFilteringAllowList(java.util.Collection)} or * {@link #withExternalDataFilteringAllowList(java.util.Collection)} if you want to override the existing values. *

* * @param externalDataFilteringAllowList * A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform * data filtering.> * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withExternalDataFilteringAllowList(DataLakePrincipal... externalDataFilteringAllowList) { if (this.externalDataFilteringAllowList == null) { setExternalDataFilteringAllowList(new java.util.ArrayList(externalDataFilteringAllowList.length)); } for (DataLakePrincipal ele : externalDataFilteringAllowList) { this.externalDataFilteringAllowList.add(ele); } return this; } /** *

* A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform data * filtering.> *

* * @param externalDataFilteringAllowList * A list of the account IDs of Amazon Web Services accounts with Amazon EMR clusters that are to perform * data filtering.> * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withExternalDataFilteringAllowList(java.util.Collection externalDataFilteringAllowList) { setExternalDataFilteringAllowList(externalDataFilteringAllowList); return this; } /** *

* Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag the * user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example key = * "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the temporary * security credentials that will be used to call Lake Formation's administrative APIs. *

* * @return Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag * the user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example * key = "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag * the temporary security credentials that will be used to call Lake Formation's administrative APIs. */ public java.util.List getAuthorizedSessionTagValueList() { return authorizedSessionTagValueList; } /** *

* Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag the * user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example key = * "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the temporary * security credentials that will be used to call Lake Formation's administrative APIs. *

* * @param authorizedSessionTagValueList * Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag * the user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example * key = "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the * temporary security credentials that will be used to call Lake Formation's administrative APIs. */ public void setAuthorizedSessionTagValueList(java.util.Collection authorizedSessionTagValueList) { if (authorizedSessionTagValueList == null) { this.authorizedSessionTagValueList = null; return; } this.authorizedSessionTagValueList = new java.util.ArrayList(authorizedSessionTagValueList); } /** *

* Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag the * user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example key = * "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the temporary * security credentials that will be used to call Lake Formation's administrative APIs. *

*

* NOTE: This method appends the values to the existing list (if any). Use * {@link #setAuthorizedSessionTagValueList(java.util.Collection)} or * {@link #withAuthorizedSessionTagValueList(java.util.Collection)} if you want to override the existing values. *

* * @param authorizedSessionTagValueList * Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag * the user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example * key = "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the * temporary security credentials that will be used to call Lake Formation's administrative APIs. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withAuthorizedSessionTagValueList(String... authorizedSessionTagValueList) { if (this.authorizedSessionTagValueList == null) { setAuthorizedSessionTagValueList(new java.util.ArrayList(authorizedSessionTagValueList.length)); } for (String ele : authorizedSessionTagValueList) { this.authorizedSessionTagValueList.add(ele); } return this; } /** *

* Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag the * user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example key = * "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the temporary * security credentials that will be used to call Lake Formation's administrative APIs. *

* * @param authorizedSessionTagValueList * Lake Formation relies on a privileged process secured by Amazon EMR or the third party integrator to tag * the user's role while assuming it. Lake Formation will publish the acceptable key-value pair, for example * key = "LakeFormationTrustedCaller" and value = "TRUE" and the third party integrator must properly tag the * temporary security credentials that will be used to call Lake Formation's administrative APIs. * @return Returns a reference to this object so that method calls can be chained together. */ public DataLakeSettings withAuthorizedSessionTagValueList(java.util.Collection authorizedSessionTagValueList) { setAuthorizedSessionTagValueList(authorizedSessionTagValueList); return this; } /** * Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be * redacted from this string using a placeholder value. * * @return A string representation of this object. * * @see java.lang.Object#toString() */ @Override public String toString() { StringBuilder sb = new StringBuilder(); sb.append("{"); if (getDataLakeAdmins() != null) sb.append("DataLakeAdmins: ").append(getDataLakeAdmins()).append(","); if (getReadOnlyAdmins() != null) sb.append("ReadOnlyAdmins: ").append(getReadOnlyAdmins()).append(","); if (getCreateDatabaseDefaultPermissions() != null) sb.append("CreateDatabaseDefaultPermissions: ").append(getCreateDatabaseDefaultPermissions()).append(","); if (getCreateTableDefaultPermissions() != null) sb.append("CreateTableDefaultPermissions: ").append(getCreateTableDefaultPermissions()).append(","); if (getParameters() != null) sb.append("Parameters: ").append(getParameters()).append(","); if (getTrustedResourceOwners() != null) sb.append("TrustedResourceOwners: ").append(getTrustedResourceOwners()).append(","); if (getAllowExternalDataFiltering() != null) sb.append("AllowExternalDataFiltering: ").append(getAllowExternalDataFiltering()).append(","); if (getAllowFullTableExternalDataAccess() != null) sb.append("AllowFullTableExternalDataAccess: ").append(getAllowFullTableExternalDataAccess()).append(","); if (getExternalDataFilteringAllowList() != null) sb.append("ExternalDataFilteringAllowList: ").append(getExternalDataFilteringAllowList()).append(","); if (getAuthorizedSessionTagValueList() != null) sb.append("AuthorizedSessionTagValueList: ").append(getAuthorizedSessionTagValueList()); sb.append("}"); return sb.toString(); } @Override public boolean equals(Object obj) { if (this == obj) return true; if (obj == null) return false; if (obj instanceof DataLakeSettings == false) return false; DataLakeSettings other = (DataLakeSettings) obj; if (other.getDataLakeAdmins() == null ^ this.getDataLakeAdmins() == null) return false; if (other.getDataLakeAdmins() != null && other.getDataLakeAdmins().equals(this.getDataLakeAdmins()) == false) return false; if (other.getReadOnlyAdmins() == null ^ this.getReadOnlyAdmins() == null) return false; if (other.getReadOnlyAdmins() != null && other.getReadOnlyAdmins().equals(this.getReadOnlyAdmins()) == false) return false; if (other.getCreateDatabaseDefaultPermissions() == null ^ this.getCreateDatabaseDefaultPermissions() == null) return false; if (other.getCreateDatabaseDefaultPermissions() != null && other.getCreateDatabaseDefaultPermissions().equals(this.getCreateDatabaseDefaultPermissions()) == false) return false; if (other.getCreateTableDefaultPermissions() == null ^ this.getCreateTableDefaultPermissions() == null) return false; if (other.getCreateTableDefaultPermissions() != null && other.getCreateTableDefaultPermissions().equals(this.getCreateTableDefaultPermissions()) == false) return false; if (other.getParameters() == null ^ this.getParameters() == null) return false; if (other.getParameters() != null && other.getParameters().equals(this.getParameters()) == false) return false; if (other.getTrustedResourceOwners() == null ^ this.getTrustedResourceOwners() == null) return false; if (other.getTrustedResourceOwners() != null && other.getTrustedResourceOwners().equals(this.getTrustedResourceOwners()) == false) return false; if (other.getAllowExternalDataFiltering() == null ^ this.getAllowExternalDataFiltering() == null) return false; if (other.getAllowExternalDataFiltering() != null && other.getAllowExternalDataFiltering().equals(this.getAllowExternalDataFiltering()) == false) return false; if (other.getAllowFullTableExternalDataAccess() == null ^ this.getAllowFullTableExternalDataAccess() == null) return false; if (other.getAllowFullTableExternalDataAccess() != null && other.getAllowFullTableExternalDataAccess().equals(this.getAllowFullTableExternalDataAccess()) == false) return false; if (other.getExternalDataFilteringAllowList() == null ^ this.getExternalDataFilteringAllowList() == null) return false; if (other.getExternalDataFilteringAllowList() != null && other.getExternalDataFilteringAllowList().equals(this.getExternalDataFilteringAllowList()) == false) return false; if (other.getAuthorizedSessionTagValueList() == null ^ this.getAuthorizedSessionTagValueList() == null) return false; if (other.getAuthorizedSessionTagValueList() != null && other.getAuthorizedSessionTagValueList().equals(this.getAuthorizedSessionTagValueList()) == false) return false; return true; } @Override public int hashCode() { final int prime = 31; int hashCode = 1; hashCode = prime * hashCode + ((getDataLakeAdmins() == null) ? 0 : getDataLakeAdmins().hashCode()); hashCode = prime * hashCode + ((getReadOnlyAdmins() == null) ? 0 : getReadOnlyAdmins().hashCode()); hashCode = prime * hashCode + ((getCreateDatabaseDefaultPermissions() == null) ? 0 : getCreateDatabaseDefaultPermissions().hashCode()); hashCode = prime * hashCode + ((getCreateTableDefaultPermissions() == null) ? 0 : getCreateTableDefaultPermissions().hashCode()); hashCode = prime * hashCode + ((getParameters() == null) ? 0 : getParameters().hashCode()); hashCode = prime * hashCode + ((getTrustedResourceOwners() == null) ? 0 : getTrustedResourceOwners().hashCode()); hashCode = prime * hashCode + ((getAllowExternalDataFiltering() == null) ? 0 : getAllowExternalDataFiltering().hashCode()); hashCode = prime * hashCode + ((getAllowFullTableExternalDataAccess() == null) ? 0 : getAllowFullTableExternalDataAccess().hashCode()); hashCode = prime * hashCode + ((getExternalDataFilteringAllowList() == null) ? 0 : getExternalDataFilteringAllowList().hashCode()); hashCode = prime * hashCode + ((getAuthorizedSessionTagValueList() == null) ? 0 : getAuthorizedSessionTagValueList().hashCode()); return hashCode; } @Override public DataLakeSettings clone() { try { return (DataLakeSettings) super.clone(); } catch (CloneNotSupportedException e) { throw new IllegalStateException("Got a CloneNotSupportedException from Object.clone() " + "even though we're Cloneable!", e); } } @com.amazonaws.annotation.SdkInternalApi @Override public void marshall(ProtocolMarshaller protocolMarshaller) { com.amazonaws.services.lakeformation.model.transform.DataLakeSettingsMarshaller.getInstance().marshall(this, protocolMarshaller); } }




© 2015 - 2024 Weber Informatics LLC | Privacy Policy