2024-11-20
25 new actions, 2 new resources, 1 new condition | 57 updated actions, 1 updated resource
Additions
Actions
-
AuthorizeInboundIntegration
-
Description:
Grants permission to Glue to continuously validate that the target Arn can receive data replicated from the source ARN
-
Access:
Write
-
Resources:
Name: integration
Required: Yes
-
CreateCatalog
-
Description:
Grants permission to create a catalog
-
Access:
Write
-
Resources:
Name: catalog
Required: Yes
Name: rootcatalog
Required: Yes
-
CreateColumnStatisticsTaskSettings
-
Description:
Grants permission to create settings for a column statistics task
-
Access:
Write
-
Resources:
Name: database
Required: Yes
Name: table
Required: Yes
-
CreateInboundIntegration
-
Description:
Grants permission to the source principal to create an inbound integration for data to be replicated from the source into the target
-
Access:
Write
-
CreateIntegration
-
Description:
Grants permission to create an integration
-
Access:
Write
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
Name: integration
Required: Yes
-
Conditions:
aws:RequestTag/${TagKey}
aws:TagKeys
-
Dependents:
kms:CreateGrant
kms:DescribeKey
-
CreateIntegrationResourceProperty
-
Description:
Grants permission to create integration resource property
-
Access:
Write
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
-
CreateIntegrationTableProperties
-
Description:
Grants permission to create integration table properties
-
Access:
Write
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
-
DeleteCatalog
-
Description:
Grants permission to delete a catalog
-
Access:
Write
-
Resources:
Name: rootcatalog
Required: Yes
Name: catalog
Required: No
-
DeleteColumnStatisticsTaskSettings
-
Description:
Grants permission to delete settings for a column statistics task
-
Access:
Write
-
Resources:
Name: database
Required: Yes
Name: table
Required: Yes
-
DeleteIntegration
-
Description:
Grants permission to delete an integration
-
Access:
Write
-
Resources:
Name: integration
Required: Yes
-
Conditions:
aws:ResourceTag/${TagKey}
-
DeleteIntegrationTableProperties
-
Description:
Grants permission to delete integration table properties
-
Access:
Write
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
-
DescribeInboundIntegrations
-
Description:
Grants permission to list the inbound integrations
-
Access:
List
-
DescribeIntegrations
-
Description:
Grants permission to describe zero-ETL integrations
-
Access:
List
-
Resources:
Name: integration
Required: Yes
-
Conditions:
aws:ResourceTag/${TagKey}
-
GetCatalog
-
Description:
Grants permission to retrieve a catalog
-
Access:
Read
-
Resources:
Name: rootcatalog
Required: Yes
Name: catalog
Required: No
-
Conditions:
glue:EnabledForRedshiftAutoDiscovery
-
GetCatalogs
-
Description:
Grants permission to retrieve all catalogs
-
Access:
Read
-
Resources:
Name: rootcatalog
Required: Yes
Name: catalog
Required: No
-
Conditions:
glue:EnabledForRedshiftAutoDiscovery
-
GetColumnStatisticsTaskSettings
-
Description:
Grants permission to retrieve settings for a column statistics task
-
Access:
Read
-
GetIntegrationResourceProperty
-
Description:
Grants permission to retrieve the integration resource property
-
Access:
Read
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
-
GetIntegrationTableProperties
-
Description:
Grants permission to retrieve the integration table properties
-
Access:
Read
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
-
ModifyIntegration
-
Description:
Grants permission to modify a zero-ETL integration
-
Access:
Write
-
Resources:
Name: integration
Required: Yes
-
Conditions:
aws:ResourceTag/${TagKey}
-
StartColumnStatisticsTaskRunSchedule
-
Description:
Grants permission to start a column statistics task run schedule
-
Access:
Write
-
Resources:
Name: database
Required: Yes
Name: table
Required: Yes
-
StopColumnStatisticsTaskRunSchedule
-
Description:
Grants permission to stop a column statistics task run schedule
-
Access:
Write
-
Resources:
Name: database
Required: Yes
Name: table
Required: Yes
-
UpdateCatalog
-
Description:
Grants permission to update a catalog
-
Access:
Write
-
Resources:
Name: rootcatalog
Required: Yes
Name: catalog
Required: No
-
UpdateColumnStatisticsTaskSettings
-
Description:
Grants permission to update settings for a column statistics task
-
Access:
Write
-
Resources:
Name: database
Required: Yes
Name: table
Required: Yes
-
UpdateIntegrationResourceProperty
-
Description:
Grants permission to update the integration resource property
-
Access:
Write
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
-
UpdateIntegrationTableProperties
-
Description:
Grants permission to update the integration table properties
-
Access:
Write
-
Resources:
Name: catalog
Required: Yes
Name: connection
Required: Yes
Name: database
Required: Yes
Resources
-
rootcatalog
-
Arn:
arn:${Partition}:glue:${Region}:${Account}:catalog
-
integration
-
Arn:
arn:${Partition}:glue:${Region}:${Account}:integration:${IntegrationId}
-
Conditions:
aws:ResourceTag/${TagKey}
Updates
Actions
-
BatchDeleteConnection
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
BatchDeleteTable
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
BatchDeleteTableVersion
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
BatchGetBlueprints
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
BatchGetStageFiles
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
CancelDataQualityRuleRecommendationRun
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
CreateMLTransform
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
CreateTable
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
CreateTableOptimizer
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
DeleteClassifier
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
DeleteCrawler
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
DeleteJob
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
DeleteMLTransform
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
DeleteSchemaVersions
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
DeleteTrigger
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
DeleteUsageProfile
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetBlueprintRun
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetCatalogImportStatus
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetColumnStatisticsForPartition
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetDataQualityResult
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetDataQualityRuleRecommendationRun
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetMLTransform
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetMLTransforms
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetStageAttempt
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetStageAttemptTaskList
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
GetStageAttemptTaskSummary
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
ListBlueprints
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
ListConnectionTypes
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
ListCrawlers
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
ListCrawls
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
ListDataQualityRulesets
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
ListDevEndpoints
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
StopCrawler
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
UseMLTransforms
Resources
-
New_value: No
Old_value: Yes
-
+ rootcatalog
-
StartCrawlerSchedule
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
DeleteWorkflow
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
GetJob
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
GetTable
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
GetDataCatalogEncryptionSettings
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
ListSessions
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
StartColumnStatisticsTaskRun
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
CreateDataQualityRuleset
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
GetTableOptimizer
Resources
-
+ {'name': 'rootcatalog', 'is_required': True}
-
- {'name': 'catalog', 'is_required': True}
-
BatchDeletePartition
Resources
-
+ rootcatalog
-
- catalog
-
BatchGetTriggers
Resources
-
+ rootcatalog
-
- catalog
-
DeleteColumnStatisticsForPartition
Resources
-
+ rootcatalog
-
- catalog
-
DeletePartitionIndex
Resources
-
+ rootcatalog
-
- catalog
-
GetBlueprintRuns
Resources
-
+ rootcatalog
-
- catalog
-
GetCompletion
Resources
-
+ rootcatalog
-
- catalog
-
GetDataflowGraph
Resources
-
+ rootcatalog
-
- catalog
-
GetDevEndpoint
Resources
-
+ rootcatalog
-
- catalog
-
ListColumnStatisticsTaskRuns
Resources
-
+ rootcatalog
-
- catalog
-
PutResourcePolicy
Resources
-
+ rootcatalog
-
- catalog
-
ResetJobBookmark
Resources
-
+ rootcatalog
-
- catalog
-
StartImportLabelsTaskRun
Resources
-
+ rootcatalog
-
- catalog
-
UpdateTable
-
UpdateUsageProfile
Resources
-
database
Arn
-
Old: arn:${Partition}:glue:${Region}:${Account}:catalog
New: arn:${Partition}:glue:${Region}:${Account}:catalog/${CatalogName}