search

aws-cloudformation / cloudformation-coverage-roadmap

The AWS CloudFormation Public Coverage Roadmap
https://aws.amazon.com/cloudformation/
Creative Commons Attribution Share Alike 4.0 International
1.11k stars 56 forks source link

AWS::LakeFormation::Permissions LF::* Tag Resources and Permissions #920

Closed lucasvieirasilva closed 2 years ago

lucasvieirasilva commented 3 years ago

Name of the resource

AWS::LakeFormation::Permissions

Resource name

AWS::LakeFormation::Permissions

Description

This is for all AWS::LakeFormation::* resources

Lake Formation LF Tag Resources and permissions is supported by the SDK:

but is not available in CloudFormation:

Full Lake Formation CloudFormation resources https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/AWS_LakeFormation.html

Other Details

No response

LyleHenkeman commented 3 years ago

Yes please

setu4993 commented 2 years ago

Would be great to have.

jeffersoncandidozup commented 2 years ago

There would be some prediction for coverage of these features?

matt-theguyw1cat commented 2 years ago

LF Tags solve so many problems with the original 'per-resource' permission scheme. For large and automated data lakes with thousands of databases and tables granting perms to a 'tag' decouples provisioning of the thing that will require the access (e.g. a lambda or ECS task) to the resource from the lifecycle of the resource itself... a beautiful thing for automation and why this feature is screaming for cloud formation support.

lucasvieirasilva commented 2 years ago

AWS CloudFormation now supports the LF Tags resources:

https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-lakeformation-principalpermissions.html https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-lakeformation-tag.html https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-lakeformation-tagassociation.html