MetastoreDataAccess

`laktory.models.resources.databricks.MetastoreDataAccess` ¤

Bases: MetastoreDataAccessBase

Databricks Metastore Data Access

Examples:

import io

from laktory import models

dac_yaml = '''
name: prod-azure-mi
azure_managed_identity:
  access_connector_id: /subscriptions/sub-id/resourceGroups/rg/providers/Microsoft.Databricks/accessConnectors/connector
grants:
- principal: account users
  privileges:
  - READ_FILES
'''
dac = models.resources.databricks.MetastoreDataAccess.model_validate_yaml(
    io.StringIO(dac_yaml)
)

References

Databricks Metastore Data Access

BASE	DESCRIPTION
`api`	Specifies whether to use account-level or workspace-level API. Valid values are `account` and `workspace`. When not set, the API level is inferred from the provider host TYPE: `str \| None \| VariableType` DEFAULT: `None`
`aws_iam_role`	TYPE: `MetastoreDataAccessAwsIamRole \| None \| VariableType` DEFAULT: `None`
`azure_managed_identity`	TYPE: `MetastoreDataAccessAzureManagedIdentity \| None \| VariableType` DEFAULT: `None`
`azure_service_principal`	TYPE: `MetastoreDataAccessAzureServicePrincipal \| None \| VariableType` DEFAULT: `None`
`cloudflare_api_token`	TYPE: `MetastoreDataAccessCloudflareApiToken \| None \| VariableType` DEFAULT: `None`
`comment`	TYPE: `str \| None \| VariableType` DEFAULT: `None`
`databricks_gcp_service_account`	TYPE: `MetastoreDataAccessDatabricksGcpServiceAccount \| None \| VariableType` DEFAULT: `None`
`force_destroy`	TYPE: `bool \| None \| VariableType` DEFAULT: `None`
`force_update`	TYPE: `bool \| None \| VariableType` DEFAULT: `None`
`gcp_service_account_key`	TYPE: `MetastoreDataAccessGcpServiceAccountKey \| None \| VariableType` DEFAULT: `None`
`is_default`	whether to set this credential as the default for the metastore. In practice, this should always be true TYPE: `bool \| None \| VariableType` DEFAULT: `None`
`isolation_mode`	TYPE: `str \| None \| VariableType` DEFAULT: `None`
`metastore_id`	TYPE: `str \| None \| VariableType` DEFAULT: `None`
`name`	TYPE: `str \| VariableType`
`owner`	TYPE: `str \| None \| VariableType` DEFAULT: `None`
`read_only`	TYPE: `bool \| None \| VariableType` DEFAULT: `None`
`skip_validation`	TYPE: `bool \| None \| VariableType` DEFAULT: `None`

LAKTORY	DESCRIPTION
`grant`	Grant(s) operating on the Metastore Data Access and authoritative for a specific principal. Other principals within the grants are preserved. Mutually exclusive with `grants`. TYPE: `StorageCredentialGrant \| list[StorageCredentialGrant] \| VariableType` DEFAULT: `None`
`grants`	Grants operating on the Metastore Data Access and authoritative for all principals. Replaces any existing grants defined inside or outside of Laktory. Mutually exclusive with `grant`. TYPE: `list[StorageCredentialGrant \| VariableType] \| VariableType` DEFAULT: `None`

ATTRIBUTE	DESCRIPTION
`additional_core_resources`	metastore data access credential grants TYPE: `list`

`additional_core_resources` `property` ¤

metastore data access credential grants

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAwsIamRole` ¤

Bases: BaseModel

PARAMETER	DESCRIPTION
`external_id`	TYPE: `str \| None \| VariableType` DEFAULT: `None`
`role_arn`	TYPE: `str \| VariableType`
`unity_catalog_iam_arn`	TYPE: `str \| None \| VariableType` DEFAULT: `None`

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAzureManagedIdentity` ¤

Bases: BaseModel

PARAMETER	DESCRIPTION
`access_connector_id`	TYPE: `str \| VariableType`
`credential_id`	TYPE: `str \| None \| VariableType` DEFAULT: `None`
`managed_identity_id`	TYPE: `str \| None \| VariableType` DEFAULT: `None`

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAzureServicePrincipal` ¤

Bases: BaseModel

PARAMETER	DESCRIPTION
`application_id`	TYPE: `str \| VariableType`
`client_secret`	TYPE: `str \| VariableType`
`directory_id`	TYPE: `str \| VariableType`

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessCloudflareApiToken` ¤

Bases: BaseModel

PARAMETER	DESCRIPTION
`access_key_id`	TYPE: `str \| VariableType`
`account_id`	TYPE: `str \| VariableType`
`secret_access_key`	TYPE: `str \| VariableType`

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessDatabricksGcpServiceAccount` ¤

Bases: BaseModel

PARAMETER	DESCRIPTION
`credential_id`	TYPE: `str \| None \| VariableType` DEFAULT: `None`
`email`	TYPE: `str \| None \| VariableType` DEFAULT: `None`

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessGcpServiceAccountKey` ¤

Bases: BaseModel

PARAMETER	DESCRIPTION
`email`	TYPE: `str \| VariableType`
`private_key`	TYPE: `str \| VariableType`
`private_key_id`	TYPE: `str \| VariableType`

MetastoreDataAccess

laktory.models.resources.databricks.MetastoreDataAccess ¤

additional_core_resources property ¤

laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAwsIamRole ¤

laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAzureManagedIdentity ¤

laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAzureServicePrincipal ¤

laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessCloudflareApiToken ¤

laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessDatabricksGcpServiceAccount ¤

laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessGcpServiceAccountKey ¤

`laktory.models.resources.databricks.MetastoreDataAccess` ¤

`additional_core_resources` `property` ¤

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAwsIamRole` ¤

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAzureManagedIdentity` ¤

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessAzureServicePrincipal` ¤

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessCloudflareApiToken` ¤

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessDatabricksGcpServiceAccount` ¤

`laktory.models.resources.databricks.metastoredataaccess.MetastoreDataAccessGcpServiceAccountKey` ¤