Addressing a Terraform Error for aws_lakeformation_permissions

2 minute read

Content level: Advanced

How to address a timeout error related to aws_lakeformation_permissions for table or table_with_columns

Problem:

The aws_lakeformation_permissions Terraform resource does not support the timeout configuration, and the default timeout is only one minute.

Solution:

If you are getting this Terraform error when deploying aws_lakeformation_permissions with a table or table_with_columns configuration:

Error: reading Lake Formation permissions: timeout while waiting for state to become ‘AVAILABLE’ (last state: ‘NOT FOUND’, timeout: 1m0s)
You can use a combination of aws_lakeformation_data_cells_filter and aws_lakeformation_permissions to address this error.

The following code demonstrates how to implement this solution:

resource "aws_lakeformation_data_cells_filter" "example" {
  table_data {
    database_name = "<Your_Database_Name>"
    name = "<Your_Data_Cells_Filter_Name>"
    table_catalog_id = "<Account_ID_of_Data_Catalog>"
    table_name = "<Your_Table_Name>"

    column_names = ["Replace", "with", "Column", "Names"] 
    row_filter {
      filter_expression = "TRUE" # TRUE means all rows; change this expression if you want to filter rows
    }
  }
  timeouts {
    create = "2m" # the default is 2 minutes, but can increase if needed
  }
}
resource "aws_lakeformation_permissions" "example" {
  permissions = ["<Update to List of Permissions>"]
  principal = "<Your_Principal>"
  data_cells_filter {
    database_name = aws_lakeformation_data_cells_filter.example.table_data[0].database_name
    name = aws_lakeformation_data_cells_filter.example.table_data[0].name
    table_catalog_id = aws_lakeformation_data_cells_filter.example.table_data[0].table_catalog_id
    table_name = aws_lakeformation_data_cells_filter.example.table_data[0].table_name
  }
}

The aws_lakeformation_data_cells_filter Terraform resource supports the timeout configuration. When used in combination with the aws_lakeformation_permissions resource, you can deploy the same permissions, without facing a timeout error.

Other Benefits:

The aws_lakeformation_data_cells_filter resource also provides row filter configuration, which allows for finer-grained access permissions.

Terraform References:

Topics: Analytics
Tags: AWS Lake Formation Analytics AWS Glue Terraform
Language: English

EXPERT

Anna

published a year ago306 views

No comments

Relevant content

Common errors while launching drill/recovery/test instance due to misconfiguration in launch template in MGN/DRS.
SUPPORT ENGINEER
Nikunj G
published 4 months ago
Why am I seeing charges for 'Public IPv4 addresses' when I am under the AWS free tier?
EXPERT
Dnyaneshwar Bhosale DB
published 2 years ago
Solving 'Read Timed Out' Error and High Latencies in Amazon Bedrock with AWS Java SDK Client
EXPERT
Hrushi_G
published a year ago
Terraform Auto Scaling Group with create_before_destroy - timeout error
devopsman
asked 2 years ago
Error: waiting for EKS Add-On (ecp-ppp-prod:coredns) create: timeout while waiting for state to become 'ACTIVE' (last state: 'DEGRADED', timeout: 20m0s)
Ravindar
asked a year ago
why did i get a db creating error from terraform
Accepted Answer
Daigo Tsuchiya
asked a year ago
How do I troubleshoot timeout errors when writing from Flink to Kinesis Data Streams?
AWS OFFICIALUpdated 2 years ago
How do I resolve the "Name or service not known" error in Amazon RDS for MySQL?
AWS OFFICIALUpdated a year ago
How do I troubleshoot connection timeout errors from Lambda when trying to access an Amazon RDS DB instance?
AWS OFFICIALUpdated 5 years ago
How can I fix the connection to my Amazon EC2 instance or elastic network interface that has an attached Elastic IP address?
AWS OFFICIALUpdated 2 months ago