Class AwsProperties
- All Implemented Interfaces:
Serializable
- See Also:
-
Field Summary
Modifier and TypeFieldDescriptionstatic final String
Used byAssumeRoleAwsClientFactory
.static final String
Used byAssumeRoleAwsClientFactory
.static final String
Used byAssumeRoleAwsClientFactory
.static final String
Used byAssumeRoleAwsClientFactory
.static final String
Used byAssumeRoleAwsClientFactory
to pass a list of sessions.static final String
Used byAssumeRoleAwsClientFactory
.static final int
static final String
The implementation class ofAwsClientFactory
to customize AWS client configurations.static final String
Configure an alternative endpoint of the DynamoDB service to access.static final String
DynamoDB table name forDynamoDbCatalog
static final String
static final String
The account ID used in a Glue resource ARN, e.g.static final String
Configure an alternative endpoint of the Glue service for GlueCatalog to access.static final String
The ID of the Glue Data Catalog where the tables reside.static final String
If Glue should skip archiving an old table version when creating a new version in a commit.static final boolean
static final String
If Glue should skip name validations It is recommended to stick to Glue best practice in https://docs.aws.amazon.com/athena/latest/ug/glue-best-practices.html to make sure operations are Hive compatible.static final boolean
static final String
If set, GlueCatalog will use Lake Formation for access control.static final boolean
static final String
Used byLakeFormationAwsClientFactory
.static final String
Used byLakeFormationAwsClientFactory
.static final String
Configure the static access key ID used for SigV4 signing.static final String
Configure the static secret access key used for SigV4 signing.static final String
Configure the static session token used for SigV4.static final String
Region to be used by the SigV4 protocol for signing requests.static final String
The service name to be used by the SigV4 protocol for signing requests.static final String
The default service name (API Gateway and lambda) used during SigV4 signing. -
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescription<T extends software.amazon.awssdk.services.dynamodb.DynamoDbClientBuilder>
voidapplyDynamoDbEndpointConfigurations
(T builder) Override the endpoint for a dynamoDb client.<T extends software.amazon.awssdk.services.glue.GlueClientBuilder>
voidapplyGlueEndpointConfigurations
(T builder) Override the endpoint for a glue client.int
boolean
boolean
boolean
software.amazon.awssdk.auth.credentials.AwsCredentialsProvider
software.amazon.awssdk.regions.Region
void
setDynamoDbTableName
(String name) void
void
setGlueCatalogSkipArchive
(boolean skipArchive) void
setGlueCatalogSkipNameValidation
(boolean glueCatalogSkipNameValidation) void
setGlueLakeFormationEnabled
(boolean glueLakeFormationEnabled) Set
<software.amazon.awssdk.services.sts.model.Tag>
-
Field Details
-
GLUE_CATALOG_ID
The ID of the Glue Data Catalog where the tables reside. If none is provided, Glue automatically uses the caller's AWS account ID by default.For more details, see https://docs.aws.amazon.com/glue/latest/dg/aws-glue-api-catalog-databases.html
- See Also:
-
GLUE_ACCOUNT_ID
The account ID used in a Glue resource ARN, e.g. arn:aws:glue:us-east-1:1000000000000:table/db1/table1- See Also:
-
GLUE_CATALOG_SKIP_ARCHIVE
If Glue should skip archiving an old table version when creating a new version in a commit. By default Glue archives all old table versions after an UpdateTable call, but Glue has a default max number of archived table versions (can be increased). So for streaming use case with lots of commits, it is recommended to set this value to true.- See Also:
-
GLUE_CATALOG_SKIP_ARCHIVE_DEFAULT
public static final boolean GLUE_CATALOG_SKIP_ARCHIVE_DEFAULT- See Also:
-
GLUE_CATALOG_SKIP_NAME_VALIDATION
If Glue should skip name validations It is recommended to stick to Glue best practice in https://docs.aws.amazon.com/athena/latest/ug/glue-best-practices.html to make sure operations are Hive compatible. This is only added for users that have existing conventions using non-standard characters. When database name and table name validation are skipped, there is no guarantee that downstream systems would all support the names.- See Also:
-
GLUE_CATALOG_SKIP_NAME_VALIDATION_DEFAULT
public static final boolean GLUE_CATALOG_SKIP_NAME_VALIDATION_DEFAULT- See Also:
-
GLUE_LAKEFORMATION_ENABLED
If set, GlueCatalog will use Lake Formation for access control. For more credential vending details, see: https://docs.aws.amazon.com/lake-formation/latest/dg/api-overview.html. If enabled, theAwsClientFactory
implementation must beLakeFormationAwsClientFactory
or any class that extends it.- See Also:
-
GLUE_LAKEFORMATION_ENABLED_DEFAULT
public static final boolean GLUE_LAKEFORMATION_ENABLED_DEFAULT- See Also:
-
GLUE_CATALOG_ENDPOINT
Configure an alternative endpoint of the Glue service for GlueCatalog to access.This could be used to use GlueCatalog with any glue-compatible metastore service that has a different endpoint
- See Also:
-
DYNAMODB_ENDPOINT
Configure an alternative endpoint of the DynamoDB service to access.- See Also:
-
DYNAMODB_TABLE_NAME
DynamoDB table name forDynamoDbCatalog
- See Also:
-
DYNAMODB_TABLE_NAME_DEFAULT
- See Also:
-
CLIENT_FACTORY
The implementation class ofAwsClientFactory
to customize AWS client configurations. If set, all AWS clients will be initialized by the specified factory. If not set,AwsClientFactories.defaultFactory()
is used as default factory.- See Also:
-
CLIENT_ASSUME_ROLE_ARN
Used byAssumeRoleAwsClientFactory
. If set, all AWS clients will assume a role of the given ARN, instead of using the default credential chain.- See Also:
-
CLIENT_ASSUME_ROLE_TAGS_PREFIX
Used byAssumeRoleAwsClientFactory
to pass a list of sessions. Each session tag consists of a key name and an associated value.- See Also:
-
CLIENT_ASSUME_ROLE_TIMEOUT_SEC
Used byAssumeRoleAwsClientFactory
. The timeout of the assume role session in seconds, default to 1 hour. At the end of the timeout, a new set of role session credentials will be fetched through a STS client.- See Also:
-
CLIENT_ASSUME_ROLE_TIMEOUT_SEC_DEFAULT
public static final int CLIENT_ASSUME_ROLE_TIMEOUT_SEC_DEFAULT- See Also:
-
CLIENT_ASSUME_ROLE_EXTERNAL_ID
Used byAssumeRoleAwsClientFactory
. Optional external ID used to assume an IAM role.For more details, see https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_create_for-user_externalid.html
- See Also:
-
CLIENT_ASSUME_ROLE_REGION
Used byAssumeRoleAwsClientFactory
. If set, all AWS clients except STS client will use the given region instead of the default region chain.The value must be one of
Region
, such as 'us-east-1'. For more details, see https://docs.aws.amazon.com/general/latest/gr/rande.html- See Also:
-
CLIENT_ASSUME_ROLE_SESSION_NAME
Used byAssumeRoleAwsClientFactory
. Optional session name used to assume an IAM role.For more details, see https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_iam-condition-keys.html#ck_rolesessionname
- See Also:
-
LAKE_FORMATION_TABLE_NAME
Used byLakeFormationAwsClientFactory
. The table name used as part of lake formation credentials request.- See Also:
-
LAKE_FORMATION_DB_NAME
Used byLakeFormationAwsClientFactory
. The database name used as part of lake formation credentials request.- See Also:
-
REST_SIGNER_REGION
Region to be used by the SigV4 protocol for signing requests.- See Also:
-
REST_SIGNING_NAME
The service name to be used by the SigV4 protocol for signing requests.- See Also:
-
REST_SIGNING_NAME_DEFAULT
The default service name (API Gateway and lambda) used during SigV4 signing.- See Also:
-
REST_ACCESS_KEY_ID
Configure the static access key ID used for SigV4 signing.When set, the default client factory will use the basic or session credentials provided instead of reading the default credential chain to create S3 access credentials. If
REST_SESSION_TOKEN
is set, session credential is used, otherwise basic credential is used.- See Also:
-
REST_SECRET_ACCESS_KEY
Configure the static secret access key used for SigV4 signing.When set, the default client factory will use the basic or session credentials provided instead of reading the default credential chain to create S3 access credentials. If
REST_SESSION_TOKEN
is set, session credential is used, otherwise basic credential is used.- See Also:
-
REST_SESSION_TOKEN
Configure the static session token used for SigV4.When set, the default client factory will use the session credentials provided instead of reading the default credential chain to create access credentials.
- See Also:
-
-
Constructor Details
-
AwsProperties
public AwsProperties() -
AwsProperties
-
-
Method Details
-
stsClientAssumeRoleTags
-
clientAssumeRoleArn
-
clientAssumeRoleTimeoutSec
public int clientAssumeRoleTimeoutSec() -
clientAssumeRoleExternalId
-
clientAssumeRoleRegion
-
clientAssumeRoleSessionName
-
glueCatalogId
-
setGlueCatalogId
-
glueCatalogSkipArchive
public boolean glueCatalogSkipArchive() -
setGlueCatalogSkipArchive
public void setGlueCatalogSkipArchive(boolean skipArchive) -
glueCatalogSkipNameValidation
public boolean glueCatalogSkipNameValidation() -
setGlueCatalogSkipNameValidation
public void setGlueCatalogSkipNameValidation(boolean glueCatalogSkipNameValidation) -
glueLakeFormationEnabled
public boolean glueLakeFormationEnabled() -
setGlueLakeFormationEnabled
public void setGlueLakeFormationEnabled(boolean glueLakeFormationEnabled) -
dynamoDbTableName
-
setDynamoDbTableName
-
applyGlueEndpointConfigurations
public <T extends software.amazon.awssdk.services.glue.GlueClientBuilder> void applyGlueEndpointConfigurations(T builder) Override the endpoint for a glue client.Sample usage:
GlueClient.builder().applyMutation(awsProperties::applyS3EndpointConfigurations)
-
applyDynamoDbEndpointConfigurations
public <T extends software.amazon.awssdk.services.dynamodb.DynamoDbClientBuilder> void applyDynamoDbEndpointConfigurations(T builder) Override the endpoint for a dynamoDb client.Sample usage:
DynamoDbClient.builder().applyMutation(awsProperties::applyDynamoDbEndpointConfigurations)
-
restSigningRegion
public software.amazon.awssdk.regions.Region restSigningRegion() -
restSigningName
-
restCredentialsProvider
public software.amazon.awssdk.auth.credentials.AwsCredentialsProvider restCredentialsProvider()
-