Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Dynamic filter on Lake Formation

0

How can we apply dynamic filters to tables on Lake Formation to permit only a specific user to get his data. As today, you have only static filters and you have to apply it specific to each user, procedure that could be unbareble if you have thousands of users...

Topics
Analytics
Tags
AWS Lake Formation
Language
English
asked 9 months ago278 views
1 Answer
1

Currently, AWS Lake Formation does not support truly dynamic filters that can automatically adjust based on individual user attributes at runtime. The filters in Lake Formation are indeed static and need to be created and applied individually for each user or group, which can become challenging to manage for a large number of users.

However, there are some strategies you can employ to make the process more manageable:

  1. Use IAM roles: Instead of creating filters for individual users, you can create filters for roles that represent groups of users with similar access needs. This can significantly reduce the number of filters you need to manage.

  2. Implement a programmatic approach: You can develop a custom solution that programmatically creates and manages data filters using the Lake Formation API. This could involve creating a script or application that generates and applies filters based on user attributes stored in a separate database or directory service.

  3. Leverage AWS Lake Formation tags: You can use Lake Formation tags to label resources and associate them with specific access policies. While not fully dynamic, this can provide a more flexible way to manage access control.

  4. Use Lake Formation's cell-level security: This feature allows you to combine column and row-level security, which can provide more granular control over data access.

  5. Consider using Amazon DataZone: This service works with Lake Formation and can help manage data access by translating row and column filters into appropriate grants in Lake Formation.

While these approaches can help streamline the process, they don't provide a truly dynamic filtering solution. As of now, managing fine-grained access control for a large number of individual users in Lake Formation remains a manual and potentially time-consuming process. It's worth noting that AWS regularly updates its services, so it's possible that more dynamic filtering capabilities may be introduced in the future.
Sources
Data filtering and cell-level security in Lake Formation - AWS Lake Formation
Effective data lakes using AWS Lake Formation, Part 1: Implementing cell-level and row-level security | AWS Big Data Blog
Grant access with filters in Amazon DataZone - Amazon DataZone
How BMW streamlined data access using AWS Lake Formation fine-grained access control | AWS Big Data Blog

answered 9 months ago
EXPERT
reviewed 9 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content